General

  • Target

    a59d3c5527654f88c4edf213963819415f838af4cf4f6199a358381d77e58f48

  • Size

    756KB

  • MD5

    0df91509aa774e7af630f7060125bcb0

  • SHA1

    721086e9f6c5913a96bd3b423e90d9a78f6d2246

  • SHA256

    a59d3c5527654f88c4edf213963819415f838af4cf4f6199a358381d77e58f48

  • SHA512

    52939adf04e545c17199992bfa437d8be2fa2891d42c1517ef40e85ba5be60dc272dc5c3f9bc376ecc26e130be086559d95002637075437e29a87050b2190ed8

  • SSDEEP

    12288:z9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hHs0t:9Z1xuVVjfFoynPaVBUR8f+kN10EB+0t

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

wolfsniper22.no-ip.org:1604

Mutex

DC_MUTEX-SBXR2HM

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    GT02HimGShDD

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    MicroUpdate

Signatures

Files

  • a59d3c5527654f88c4edf213963819415f838af4cf4f6199a358381d77e58f48
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections