Overview

overview

10

Static

static

10

13fe26ce28...3e.exe

windows7-x64

13fe26ce28...3e.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13fe26ce28c58155a91e22986e3da535b46995a6e76fd499add581ac6ec88e3e

  • Size

    658KB

  • Sample

    221021-yk2z2sdbdk

  • MD5

    759418b77eb5d020458cf6f4bedefd98

  • SHA1

    675fb729a96c13cf0c376dedf7d8c1000058c637

  • SHA256

    13fe26ce28c58155a91e22986e3da535b46995a6e76fd499add581ac6ec88e3e

  • SHA512

    47b4d5d2fee9ab30b0c08875ebd06127e02ef19cbdaca525a7f5994b60634ad611494737cf6372d539a18bfd69c5c9f0193506496eb5ba7e65467d9c51def44a

  • SSDEEP

    12288:B9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hK:7Z1xuVVjfFoynPaVBUR8f+kN10EBE

Score
10/10
darkcomethf

Malware Config

Extracted

Family

darkcomet

Botnet

HF

C2

jsofferin.no-ip.biz:52271

Mutex

DC_MUTEX-1GS8KW7

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    pPnDewYHT5oU

  • install

    true

  • offline_keylogger

    true

  • persistence

    true

  • reg_key

    MicroUpdate

Targets

    • Target

      13fe26ce28c58155a91e22986e3da535b46995a6e76fd499add581ac6ec88e3e

    • Size

      658KB

    • MD5

      759418b77eb5d020458cf6f4bedefd98

    • SHA1

      675fb729a96c13cf0c376dedf7d8c1000058c637

    • SHA256

      13fe26ce28c58155a91e22986e3da535b46995a6e76fd499add581ac6ec88e3e

    • SHA512

      47b4d5d2fee9ab30b0c08875ebd06127e02ef19cbdaca525a7f5994b60634ad611494737cf6372d539a18bfd69c5c9f0193506496eb5ba7e65467d9c51def44a

    • SSDEEP

      12288:B9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hK:7Z1xuVVjfFoynPaVBUR8f+kN10EBE

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks