cybergate | 918ab61f99a66af67e75300e4fb5b58fe6547bab2d5468cc57dc7a2146b40c59 | Triage

Submit
Reports

Overview

overview

Static

static

918ab61f99...59.exe

windows7-x64

918ab61f99...59.exe

windows10-2004-x64

Sharing

Static task

static1

cybergate darkcomet

2 signatures

Behavioral task

behavioral1

Sample

918ab61f99a66af67e75300e4fb5b58fe6547bab2d5468cc57dc7a2146b40c59.exe

Resource

win7-20221111-en

cybergate darkcomet guest16 remote evasion persistence rat stealer trojan upx

windows7-x64

25 signatures

150 seconds

Behavioral task

behavioral2

Sample

918ab61f99a66af67e75300e4fb5b58fe6547bab2d5468cc57dc7a2146b40c59.exe

Resource

win10v2004-20221111-en

cybergate darkcomet guest16 remote evasion persistence rat stealer trojan upx

windows10-2004-x64

26 signatures

150 seconds

General

Target

918ab61f99a66af67e75300e4fb5b58fe6547bab2d5468cc57dc7a2146b40c59
Size

1.3MB
MD5

5b4676c83b81c115e4213863027a8cd8
SHA1

c6ce3d2675c4fb5e160976ed0c1ee0ac7fdfda15
SHA256

918ab61f99a66af67e75300e4fb5b58fe6547bab2d5468cc57dc7a2146b40c59
SHA512

5799829fe0fc921fa91f93573d5ddfb155ab04541260a3b864e9cc68dc6512c1fe348f844cac6db09e5666efcb540efb1a3f65d93677aedbade888196d87261d
SSDEEP

24576:PHwF8vrx52t07FQaWZ1xuVVjfFoynPaVBUR8f+kN10EBCvzR:PQF8vrYaKamQDgok30/bR

Score

10^/10

cybergate darkcomet

Malware Config

Signatures

Cybergate family
cybergate
Darkcomet family
darkcomet

Files

918ab61f99a66af67e75300e4fb5b58fe6547bab2d5468cc57dc7a2146b40c59
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy