General
-
Target
dc63e0a0dc9d6d51546b0e58a0bb335088216892e23f1e47c709b3b9d223dd26
-
Size
1013KB
-
Sample
221123-p6exzagb61
-
MD5
eebf02768297ef104a07d6bb59069f25
-
SHA1
fcfc068313e49d0643bd63e4b7e80412b0fc9772
-
SHA256
dc63e0a0dc9d6d51546b0e58a0bb335088216892e23f1e47c709b3b9d223dd26
-
SHA512
925e6924999346f05fd0489defdc136cba638af3e7a05546555539c6ee95a45f224f77465374e1092973049fc300fac9a7fe5eeecb2020f9679afe2f3bd9c089
-
SSDEEP
24576:Vby5T5OBt/EmYDSD+CEOkLr15FlKXkKJED:VbWT5mEmULrGBKD
Static task
static1
Behavioral task
behavioral1
Sample
dc63e0a0dc9d6d51546b0e58a0bb335088216892e23f1e47c709b3b9d223dd26.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
dc63e0a0dc9d6d51546b0e58a0bb335088216892e23f1e47c709b3b9d223dd26.exe
Resource
win10v2004-20220901-en
Malware Config
Extracted
darkcomet
ilikedicks
98.236.11.150:1604
DCMIN_MUTEX-9TZK8AZ
-
gencode
MReDlsnviHt7
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
dc63e0a0dc9d6d51546b0e58a0bb335088216892e23f1e47c709b3b9d223dd26
-
Size
1013KB
-
MD5
eebf02768297ef104a07d6bb59069f25
-
SHA1
fcfc068313e49d0643bd63e4b7e80412b0fc9772
-
SHA256
dc63e0a0dc9d6d51546b0e58a0bb335088216892e23f1e47c709b3b9d223dd26
-
SHA512
925e6924999346f05fd0489defdc136cba638af3e7a05546555539c6ee95a45f224f77465374e1092973049fc300fac9a7fe5eeecb2020f9679afe2f3bd9c089
-
SSDEEP
24576:Vby5T5OBt/EmYDSD+CEOkLr15FlKXkKJED:VbWT5mEmULrGBKD
Score10/10-
Executes dropped EXE
-
Drops startup file
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-