General

  • Target

    6fab6a3b9d7dd3c66e3c55e2a7a68c6eaacc1d132abbb229355e09024846dd47

  • Size

    822KB

  • MD5

    d6b8d9389d75818e771a17f5666c56af

  • SHA1

    88b41f4f165b266c004f41c4ffd4fcd0ad2a9f1b

  • SHA256

    6fab6a3b9d7dd3c66e3c55e2a7a68c6eaacc1d132abbb229355e09024846dd47

  • SHA512

    a3616caee43e58de10d84af39b57bb40295fc4c6076e1e64b318997b8cda2e9fb536a1beac74f002229d2c2b7edb2f261aefcbe9d4c94ede146e29f628b566ae

  • SSDEEP

    24576:CZ1xuVVjfFoynPaVBUR8f+kN10EBbyx9hxhW:CQDgok30FC

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

mounir28.no-ip.biz:1604

Mutex

DC_MUTEX-6MLVMZN

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    k5aVWdPp55si

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    MicroUpdate

Signatures

Files

  • 6fab6a3b9d7dd3c66e3c55e2a7a68c6eaacc1d132abbb229355e09024846dd47
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections