darkcomet | dfa88add456c5806d4064658080520836858bd9558c5044e7d5022f5840b6034 | Triage

Submit
Reports

Overview

overview

Static

static

dfa88add45...34.exe

windows7-x64

1

dfa88add45...34.exe

windows10-2004-x64

1

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dfa88add456c5806d4064658080520836858bd9558c5044e7d5022f5840b6034.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

dfa88add456c5806d4064658080520836858bd9558c5044e7d5022f5840b6034.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

dfa88add456c5806d4064658080520836858bd9558c5044e7d5022f5840b6034
Size

647KB
MD5

56abb9bb8b1918dfc527974c20dd0e5a
SHA1

332c979ec6c46bc1c20c3fb958832004a9cc5785
SHA256

dfa88add456c5806d4064658080520836858bd9558c5044e7d5022f5840b6034
SHA512

f320e16b7c43793dc247ce2c51b6a1026666366b97574f26867323fc63134ec0eb09f4ca7d3585b2604d8d3147c2138868f4da26ab71f8c3f2de9a98b1f66a83
SSDEEP

12288:x6A84PaHhfD/tV9sj5NKR0pau9XGyu2qBVGLQyTPf1N:0AmBpVKHu0Mu9Xo20VGLVPtN

Score

10^/10

darkcomet

Malware Config

Signatures

Darkcomet family
darkcomet

Files

dfa88add456c5806d4064658080520836858bd9558c5044e7d5022f5840b6034
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.text
Size: 562KB - Virtual size: 561KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 46KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 56B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy