General

  • Target

    51a717cd007c102ba5c025412d5864d6bfc4f626aac63fd5425410aee7336bd2

  • Size

    658KB

  • MD5

    36c95ba631016696129fbc3bf59e8ac0

  • SHA1

    936c4c45d38214724931a274dafe43c99cf893dc

  • SHA256

    51a717cd007c102ba5c025412d5864d6bfc4f626aac63fd5425410aee7336bd2

  • SHA512

    b2bb3f68b6af6929ebd6aaa86addbe65ae2e733567e58d54a013ad10b4ddb1e1cdf0e9a8cbb4215baab8f2e405ca301cced4b0137a0c649e95794e2389bdd670

  • SSDEEP

    12288:q9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/h7:mZ1xuVVjfFoynPaVBUR8f+kN10EBt

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

127.0.0.1:1604

Mutex

DC_MUTEX-Z3AEEVW

Attributes
  • gencode

    ynLN83YsBSs2

  • install

    false

  • offline_keylogger

    true

  • persistence

    false

Signatures

Files

  • 51a717cd007c102ba5c025412d5864d6bfc4f626aac63fd5425410aee7336bd2
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections