General

  • Target

    99b8353f404a625cffba8921c6d60448f93d69c5141e4f891322651c0777d154

  • Size

    277KB

  • MD5

    9375226caab16cbca8f24cc2bb94e910

  • SHA1

    27e11af7a9b6b21bb338c67c27049fa0660a86b3

  • SHA256

    99b8353f404a625cffba8921c6d60448f93d69c5141e4f891322651c0777d154

  • SHA512

    01851d0e261f03eadb5e3d629b08230951017105dee4c5618580eb548531abb13ca1683867308a9d01f698fc56ebb2337a5c9f57ba2186e09be39c1b2fa0a4d1

  • SSDEEP

    6144:fPEfsAGLjUkE1UggKHdWalZyIICExN+KmJRIl2Y1fWytLLXBSG+4Odb:fPU1GPUfUggKHdLryIxE2PRktLtLLXBI

Malware Config

Extracted

Family

darkcomet

Botnet

|SWR.PRJT| -NEW-

C2

hdycusje62bh5.no-ip.biz:666

Mutex

DC_MUTEX-V6VMQ0J

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    hkjRbPgT0z5Z

  • install

    true

  • offline_keylogger

    true

  • persistence

    true

  • reg_key

    MicroUpdate

Signatures

Files

  • 99b8353f404a625cffba8921c6d60448f93d69c5141e4f891322651c0777d154
    .rar
  • MineCrackv0.8.4.exe
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections