General
-
Target
fefb6125c928072f4611b21237a1acbffe5ab546427cb94a978d98228b464a49
-
Size
694KB
-
Sample
221130-3gnqgaee35
-
MD5
4728e7cdc9cdc081836dfc309f4c5200
-
SHA1
720f5e6e422b97e240066562bbc66dcb63a34786
-
SHA256
fefb6125c928072f4611b21237a1acbffe5ab546427cb94a978d98228b464a49
-
SHA512
9177242bd1434e8b3a88f9c8212060436153c08b9a73c53fe9fc9e01e303aa587f3d8ca8054a40cd586c4486d79de830e377f68fbb9b68686c525ccb2a8c0a6e
-
SSDEEP
12288:p+PkN5nJkqxyQHUwmu/VX5lgd12WYuAAiOTgtFpTbwZ2iyWy:nNRqoHUwbDlgdwZBCgJTbwwiyV
Static task
static1
Behavioral task
behavioral1
Sample
fefb6125c928072f4611b21237a1acbffe5ab546427cb94a978d98228b464a49.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
fefb6125c928072f4611b21237a1acbffe5ab546427cb94a978d98228b464a49.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
darkcomet
Guest16_min
37.221.161.37:1234
DCMIN_MUTEX-QHCX8P4
-
gencode
EXviYNnCNHfA
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
fefb6125c928072f4611b21237a1acbffe5ab546427cb94a978d98228b464a49
-
Size
694KB
-
MD5
4728e7cdc9cdc081836dfc309f4c5200
-
SHA1
720f5e6e422b97e240066562bbc66dcb63a34786
-
SHA256
fefb6125c928072f4611b21237a1acbffe5ab546427cb94a978d98228b464a49
-
SHA512
9177242bd1434e8b3a88f9c8212060436153c08b9a73c53fe9fc9e01e303aa587f3d8ca8054a40cd586c4486d79de830e377f68fbb9b68686c525ccb2a8c0a6e
-
SSDEEP
12288:p+PkN5nJkqxyQHUwmu/VX5lgd12WYuAAiOTgtFpTbwZ2iyWy:nNRqoHUwbDlgdwZBCgJTbwwiyV
Score10/10-
Suspicious use of SetThreadContext
-