General
-
Target
1f1d35c7afb5178b9e98b71c433108743ba6d9d7f9aecf647c4b9130ea084ab8
-
Size
1.5MB
-
Sample
221126-cjanhsdg53
-
MD5
255d824058f18f2d9dac2dda2214e08a
-
SHA1
95ebcbae50218bc8ca8d472a5b1b7f23d7a0c061
-
SHA256
1f1d35c7afb5178b9e98b71c433108743ba6d9d7f9aecf647c4b9130ea084ab8
-
SHA512
65451253c32711991f742a045c4158d3219ed473a1b9120eeae888f6caa59ad108fe2133a3e95f8b98d224d119c905bed26073f29a10cf125bb73677de23a0d5
-
SSDEEP
24576:mZ1xuVVjfFoynPaVBUR8f+kN10EBiKzn1AAHEvtcwOwnvzuEG9WlE:2QDgok309qA3c5VFkW
Behavioral task
behavioral1
Sample
1f1d35c7afb5178b9e98b71c433108743ba6d9d7f9aecf647c4b9130ea084ab8.exe
Resource
win7-20220901-en
Malware Config
Extracted
darkcomet
1
bagrad.ddns.net:8080
DC_MUTEX-M3J1E7D
-
gencode
9xK8C2aXKe4Y
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
1f1d35c7afb5178b9e98b71c433108743ba6d9d7f9aecf647c4b9130ea084ab8
-
Size
1.5MB
-
MD5
255d824058f18f2d9dac2dda2214e08a
-
SHA1
95ebcbae50218bc8ca8d472a5b1b7f23d7a0c061
-
SHA256
1f1d35c7afb5178b9e98b71c433108743ba6d9d7f9aecf647c4b9130ea084ab8
-
SHA512
65451253c32711991f742a045c4158d3219ed473a1b9120eeae888f6caa59ad108fe2133a3e95f8b98d224d119c905bed26073f29a10cf125bb73677de23a0d5
-
SSDEEP
24576:mZ1xuVVjfFoynPaVBUR8f+kN10EBiKzn1AAHEvtcwOwnvzuEG9WlE:2QDgok309qA3c5VFkW
-
Suspicious use of SetThreadContext
-