General
-
Target
fbad4b96820c1d1d4f1945c50b10d09d9b8e0c2d0506db8d2d3091f46fe8bde8
-
Size
658KB
-
Sample
221126-saf2yaca27
-
MD5
02353307175a7aaddd0cf29bdd15f799
-
SHA1
5d125da83e6cc61455084a603528a1187178eaa5
-
SHA256
fbad4b96820c1d1d4f1945c50b10d09d9b8e0c2d0506db8d2d3091f46fe8bde8
-
SHA512
429222cf21a2b7529ed9d8639effd8f300f1853aaf07c3a53433d88f8caa01b04836e213351a25546433581aab0a71da059ae55aaf9cbe147eb43bdcde681160
-
SSDEEP
12288:a9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hT:WZ1xuVVjfFoynPaVBUR8f+kN10EBl
Malware Config
Extracted
darkcomet
Slaves
g87.ddns.net:200
DCMIN_MUTEX-ANQGUQL
-
gencode
vxYs9Drk6yJ5
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
fbad4b96820c1d1d4f1945c50b10d09d9b8e0c2d0506db8d2d3091f46fe8bde8
-
Size
658KB
-
MD5
02353307175a7aaddd0cf29bdd15f799
-
SHA1
5d125da83e6cc61455084a603528a1187178eaa5
-
SHA256
fbad4b96820c1d1d4f1945c50b10d09d9b8e0c2d0506db8d2d3091f46fe8bde8
-
SHA512
429222cf21a2b7529ed9d8639effd8f300f1853aaf07c3a53433d88f8caa01b04836e213351a25546433581aab0a71da059ae55aaf9cbe147eb43bdcde681160
-
SSDEEP
12288:a9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hT:WZ1xuVVjfFoynPaVBUR8f+kN10EBl
Score10/10-
Darkcomet
DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
-