General

  • Target

    9c4a8e775757e4d033806069f4ca879bf91f93d8368840722e3cb4f34425b628

  • Size

    658KB

  • MD5

    55bfd3e056c7ee2edd4a05fd7879696a

  • SHA1

    3d1ed2443dd8a2be75489930dfaf00d490e7f45f

  • SHA256

    9c4a8e775757e4d033806069f4ca879bf91f93d8368840722e3cb4f34425b628

  • SHA512

    e9b296dd51dec0fde9b44580d7b24ef8e6db45595700df8ee6166243124053c50d9a0674f572d787bd9252411226451d241a050e8f962450ddb1484621a80bfe

  • SSDEEP

    12288:S9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIBNkNCCL49EkhC/hE:+Z1xuVVjfFoynPaVBUR8fekN1EEZ+

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

127.0.0.1:1604

Mutex

DC_MUTEX-QLA446H

Attributes
  • InstallPath

    MSDCSC\SERVER.exe

  • gencode

    ZqzlwvbUUbTw

  • install

    true

  • offline_keylogger

    false

  • persistence

    false

  • reg_key

    SERVER.exe

Signatures

Files

  • 9c4a8e775757e4d033806069f4ca879bf91f93d8368840722e3cb4f34425b628
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections