Overview

overview

10

Static

static

10

e309654b70...29.exe

windows7-x64

10

e309654b70...29.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e309654b706d88938f16f6bef7a53e5ffad226d6a0d90167bf4d57de8a3d4a29

  • Size

    745KB

  • Sample

    221106-r81zbsacal

  • MD5

    0c889fc6cbcf65bf6e9dd3810af1544a

  • SHA1

    4f1ef89232de53b1fa7dfe732243a4f6e4555d4c

  • SHA256

    e309654b706d88938f16f6bef7a53e5ffad226d6a0d90167bf4d57de8a3d4a29

  • SHA512

    64bbabfa1cbd55489d854c5507486caadb18fb6bfd2f6a56693c16d142cbab91072457f940edcfc9e1b12f0ed02e973b4043f6010c92dbef725745488251b073

  • SSDEEP

    12288:oaAchpWsuVTv7ItY8XljyypHP3cOLBev03hlULsmWZ++09ZcKDVsgdBl:JAEENIq8XwyVPMclDq/+WnpsS

Score
10/10
darkcometrattrojan

Malware Config

Targets

    • Target

      e309654b706d88938f16f6bef7a53e5ffad226d6a0d90167bf4d57de8a3d4a29

    • Size

      745KB

    • MD5

      0c889fc6cbcf65bf6e9dd3810af1544a

    • SHA1

      4f1ef89232de53b1fa7dfe732243a4f6e4555d4c

    • SHA256

      e309654b706d88938f16f6bef7a53e5ffad226d6a0d90167bf4d57de8a3d4a29

    • SHA512

      64bbabfa1cbd55489d854c5507486caadb18fb6bfd2f6a56693c16d142cbab91072457f940edcfc9e1b12f0ed02e973b4043f6010c92dbef725745488251b073

    • SSDEEP

      12288:oaAchpWsuVTv7ItY8XljyypHP3cOLBev03hlULsmWZ++09ZcKDVsgdBl:JAEENIq8XwyVPMclDq/+WnpsS

    Score
    10/10
    darkcometrattrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks