General

  • Target

    a72f084168495990a485ba5d52c7ac6767c7c77f66de44539b5c5a388105859d

  • Size

    658KB

  • MD5

    f03647080fe1f1f3a455b9a2b48e4d31

  • SHA1

    5e416d552f53c54bcab49a22afc32a545cc8b3dd

  • SHA256

    a72f084168495990a485ba5d52c7ac6767c7c77f66de44539b5c5a388105859d

  • SHA512

    dd3a1e4ba1dd69c957823ddc833364ea6fc264df58907cc258fc492278d2c0958aeeddf612e7f2c5260d5e537fe760a1933ac99d3e32f84b21a7eacec06952cf

  • SSDEEP

    12288:q9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hp:mZ1xuVVjfFoynPaVBUR8f+kN10EB/

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

server

C2

127.0.0.1:1604

Mutex

DC_MUTEX-9VLJXN6

Attributes
  • gencode

    1ESF8b0x8up5

  • install

    false

  • offline_keylogger

    true

  • persistence

    false

Signatures

Files

  • a72f084168495990a485ba5d52c7ac6767c7c77f66de44539b5c5a388105859d
    .exe windows x86

    e5b4359a3773764a372173074ae9b6bd


    Headers

    Imports

    Sections