darkcomet | 185f35575392c307fdca6e49384aeeec0852bd1e4ae78469b6d8f8c7200229e3 | Triage

Sharing

General

Target

185f35575392c307fdca6e49384aeeec0852bd1e4ae78469b6d8f8c7200229e3
Size

4.2MB
Sample

221125-lwfvqsha58
MD5

af4f39ca0761fc9dee69c2ef6dafa4cb
SHA1

e1876d93ef423cd62a4f5548d998869ae769a8ae
SHA256

185f35575392c307fdca6e49384aeeec0852bd1e4ae78469b6d8f8c7200229e3
SHA512

4169d0af85788f6d9943bfe37b924a7c7d24bdbbedd0c77b38489a7b2b2010493d4f0ed7b8359f954ed8ccae6b59383c20efccb963c4762d668dd8ad672bde1d
SSDEEP

49152:5ls8QyAsFPgMmS4/8GbgApQg7XsWBFCxWpPamy2TuO5/C6wA1x:5ls8KIgW4vTTZ9VXqOIAr

Score

10^/10

darkcomet rat trojan

Malware Config

Extracted

Family

darkcomet

Attributes

gencode
install
false
offline_keylogger
false
persistence
false

Targets

- Target
  
  185f35575392c307fdca6e49384aeeec0852bd1e4ae78469b6d8f8c7200229e3
- Size
  
  4.2MB
- MD5
  
  af4f39ca0761fc9dee69c2ef6dafa4cb
- SHA1
  
  e1876d93ef423cd62a4f5548d998869ae769a8ae
- SHA256
  
  185f35575392c307fdca6e49384aeeec0852bd1e4ae78469b6d8f8c7200229e3
- SHA512
  
  4169d0af85788f6d9943bfe37b924a7c7d24bdbbedd0c77b38489a7b2b2010493d4f0ed7b8359f954ed8ccae6b59383c20efccb963c4762d668dd8ad672bde1d
- SSDEEP
  
  49152:5ls8QyAsFPgMmS4/8GbgApQg7XsWBFCxWpPamy2TuO5/C6wA1x:5ls8KIgW4vTTZ9VXqOIAr
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan