General

  • Target

    e6098e2899c513aed957455bef60a6e6ba7f5d73a29504ed4698fe8a3170c60b

  • Size

    756KB

  • MD5

    83ef443976d8eacccc1746469e6fdc90

  • SHA1

    c666722a3a1f860aa8ae59882c034219af9dd33a

  • SHA256

    e6098e2899c513aed957455bef60a6e6ba7f5d73a29504ed4698fe8a3170c60b

  • SHA512

    2b5ab9322cff8402ec76f10673c9a74760ebb99ae7d88ee37d75ebc6f0df5c6d8b719653a3ecccda9a765a5bd649c571c5b573d814a5f25bb8a3f33177c5d37b

  • SSDEEP

    12288:K9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hM:GZ1xuVVjfFoynPaVBUR8f+kN10EBa

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

comehere.no-ip.biz:1604

Mutex

DC_MUTEX-4YBXKN7

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    XSHhQSfFpDrU

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    MicroUpdate

Signatures

Files

  • e6098e2899c513aed957455bef60a6e6ba7f5d73a29504ed4698fe8a3170c60b
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections