Overview

overview

10

Static

static

10

ac6414fa9c...54.exe

windows7-x64

ac6414fa9c...54.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac6414fa9c5c4f138a9820c409138c5bb75db4ba41eaa6a219881bfcb8ad7d54

  • Size

    658KB

  • Sample

    221201-lxzdgabd8z

  • MD5

    c340a95067971ad340cf8b3740bb45c8

  • SHA1

    7462ef5d20e48aa2842e07388fac5b11152e6e57

  • SHA256

    ac6414fa9c5c4f138a9820c409138c5bb75db4ba41eaa6a219881bfcb8ad7d54

  • SHA512

    c6d744e13de6d1fc215a7e1f1bf9b799361e21af6a823fe55e0f96096d0b3e3056ccc3948acc41967975711d1edc60e15c65d8f92a0dd497f162c10cd12310fd

  • SSDEEP

    12288:FPHFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/h4:ZZ1xuVVjfFoynPaVBUR8f+kN10EBu

Score
10/10
darkcometji

Malware Config

Extracted

Family

darkcomet

Botnet

JI

C2

ibangbeatz.zapto.org:1604

Mutex

DCMIN_MUTEX-YLBHH4P

Attributes
  • InstallPath

    DCSCMIN\IMDCSC.exe

  • gencode

    0ww5qctZfPUG

  • install

    true

  • offline_keylogger

    true

  • persistence

    false

  • reg_key

    DarkComet RAT

Targets

    • Target

      ac6414fa9c5c4f138a9820c409138c5bb75db4ba41eaa6a219881bfcb8ad7d54

    • Size

      658KB

    • MD5

      c340a95067971ad340cf8b3740bb45c8

    • SHA1

      7462ef5d20e48aa2842e07388fac5b11152e6e57

    • SHA256

      ac6414fa9c5c4f138a9820c409138c5bb75db4ba41eaa6a219881bfcb8ad7d54

    • SHA512

      c6d744e13de6d1fc215a7e1f1bf9b799361e21af6a823fe55e0f96096d0b3e3056ccc3948acc41967975711d1edc60e15c65d8f92a0dd497f162c10cd12310fd

    • SSDEEP

      12288:FPHFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/h4:ZZ1xuVVjfFoynPaVBUR8f+kN10EBu

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks