darkcomet | 401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe | Triage

Submit
Reports

Overview

overview

Static

static

401be40f6a...be.exe

windows7-x64

401be40f6a...be.exe

windows10-2004-x64

Sharing

General

Target

401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe
Size

2.2MB
Sample

221123-vm97nahe33
MD5

4d347fdcc43fef796cc7fd847f398604
SHA1

84ed2a2847b90cb3839621e5e8f1304a9e8bf44a
SHA256

401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe
SHA512

c49e9bc3b7f42cc6e1cd12f571c01d2b9e43328ef58a2954019cd4bc54e659ad276e7b94320ab98029463d6d428843571efff8b71bfc888fbc67d1ce23ad97f1
SSDEEP

49152:8jtez5KlYsCjIeKrGk5x7lg0J9/doQcAWNk7Q1SnKLPUL2FAc/Zg+L:3clCjOXW0J9loQii7Q1eKLPUyX

Score

10^/10

darkcomet rat trojan

Static task

static1

Behavioral task

behavioral1

Sample

401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe.exe

Resource

win7-20220812-en

darkcomet rat trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe.exe

Resource

win10v2004-20220812-en

darkcomet rat trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe
- Size
  
  2.2MB
- MD5
  
  4d347fdcc43fef796cc7fd847f398604
- SHA1
  
  84ed2a2847b90cb3839621e5e8f1304a9e8bf44a
- SHA256
  
  401be40f6a6a90ac8a53b5dd0d56eb0f4bfa6cebfb21eef5a41516c467c5fdbe
- SHA512
  
  c49e9bc3b7f42cc6e1cd12f571c01d2b9e43328ef58a2954019cd4bc54e659ad276e7b94320ab98029463d6d428843571efff8b71bfc888fbc67d1ce23ad97f1
- SSDEEP
  
  49152:8jtez5KlYsCjIeKrGk5x7lg0J9/doQcAWNk7Q1SnKLPUL2FAc/Zg+L:3clCjOXW0J9loQii7Q1eKLPUyX
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan

© 2018-2024

Terms | Privacy