Overview

overview

10

Static

static

e5e08721c9...da.exe

windows7-x64

10

e5e08721c9...da.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e5e08721c96db8ef87f3e52439ec8a1d6a87fa69ae81fdcfff50d58d57c70dda

  • Size

    733KB

  • Sample

    221106-rcd5pagfbj

  • MD5

    0ee21bef7a2a7890fff50391c8cda7c8

  • SHA1

    6d3c212400c372ac2267e5bb3fa43ab1b9935a34

  • SHA256

    e5e08721c96db8ef87f3e52439ec8a1d6a87fa69ae81fdcfff50d58d57c70dda

  • SHA512

    3f455e6e11ed2df2ea7e3c7032f58bb37610fb50ca325db4cc213f30fdecb8114f53609ff52e254e74e3aadfac2062e32b85cb051c004743a8d93215b3dc8ada

  • SSDEEP

    12288:YMVpy+Y1OHnR84Id16uyVcEVx9OKenW1L2q2mkESJ+mqfxPr4itPQO:YMVpy+HOdNscUQKFKEI+bft

Score
10/10
darkcometrattrojan

Malware Config

Targets

    • Target

      e5e08721c96db8ef87f3e52439ec8a1d6a87fa69ae81fdcfff50d58d57c70dda

    • Size

      733KB

    • MD5

      0ee21bef7a2a7890fff50391c8cda7c8

    • SHA1

      6d3c212400c372ac2267e5bb3fa43ab1b9935a34

    • SHA256

      e5e08721c96db8ef87f3e52439ec8a1d6a87fa69ae81fdcfff50d58d57c70dda

    • SHA512

      3f455e6e11ed2df2ea7e3c7032f58bb37610fb50ca325db4cc213f30fdecb8114f53609ff52e254e74e3aadfac2062e32b85cb051c004743a8d93215b3dc8ada

    • SSDEEP

      12288:YMVpy+Y1OHnR84Id16uyVcEVx9OKenW1L2q2mkESJ+mqfxPr4itPQO:YMVpy+HOdNscUQKFKEI+bft

    Score
    10/10
    darkcometrattrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks