General

  • Target

    88fe005b56f88182140ee4934a1d031ba2d6451915a2af23ed285b51d19f079c

  • Size

    756KB

  • MD5

    9a98fc661edcef0a0109c503e3de415e

  • SHA1

    4e41a27a79cee5edc8684cccf5c0a55334c4a016

  • SHA256

    88fe005b56f88182140ee4934a1d031ba2d6451915a2af23ed285b51d19f079c

  • SHA512

    414a0c482594b991c51348cc1f10b07ded295ef6fa98ee06a3ba49e26c67c5ff80a8b2e65ad7390eef6417e45e3b99e101509de0d505fcb5058b55602a74ca81

  • SSDEEP

    12288:S9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/h5:+Z1xuVVjfFoynPaVBUR8f+kN10EBv

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Savannah

C2

192.168.1.143:1604

Mutex

DC_MUTEX-5J4J2C8

Attributes
  • gencode

    3VD4nEaTkWc9

  • install

    false

  • offline_keylogger

    true

  • persistence

    false

Signatures

Files

  • 88fe005b56f88182140ee4934a1d031ba2d6451915a2af23ed285b51d19f079c
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections