General

  • Target

    ce2796bcb0bf9b7fad17febd2c1b2338584d59aa0f4728f07d8accecc4d43296

  • Size

    658KB

  • MD5

    254a039cf7f5816f3d6808c56fe78960

  • SHA1

    a19c3b0902b00c58f69f138637c247d2d6b8c3c7

  • SHA256

    ce2796bcb0bf9b7fad17febd2c1b2338584d59aa0f4728f07d8accecc4d43296

  • SHA512

    7a7be17498f299aae60db5f7f714d085159590995892049143945d471e6dfd807ab8ca8219662a1209adad15e42a119e97fa32da7e27015752a6cf7a319f1c77

  • SSDEEP

    12288:+9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/h/:KZ1xuVVjfFoynPaVBUR8f+kN10EBd

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

188.173.228.150:1604

Mutex

DC_MUTEX-ZKFNFN7

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    lWY0db4vu4cV

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    MicroUpdate

Signatures

Files

  • ce2796bcb0bf9b7fad17febd2c1b2338584d59aa0f4728f07d8accecc4d43296
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections