darkcomet | 1cd1f9263c7dd0df76f1df604d1ccf94ce4d48b5564dbde6198adc16d57116f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1cd1f9263c7dd0df76f1df604d1ccf94ce4d48b5564dbde6198adc16d57116f2
Size

658KB
Sample

221201-lytjlsbe5z
MD5

6a7854f60a2b475a219e85781ab58680
SHA1

eabc82581f19bbfb5c995f279bca26b81b317713
SHA256

1cd1f9263c7dd0df76f1df604d1ccf94ce4d48b5564dbde6198adc16d57116f2
SHA512

dcee81a44efdfa3cbf6ea5d6ee8105e23aee070b812e96600fd40baba65eede6b8977058043ed47f4415991b3fdef3349bbdb28c4adf2769d5480fa48a2c654b
SSDEEP

12288:C9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hA:uZ1xuVVjfFoynPaVBUR8f+kN10EBa

Score

10^/10

darkcomet guest16 rat trojan

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

arno17.no-ip.biz:1604

Mutex

DC_MUTEX-9X1UEPS

Attributes

gencode
scVkQw1n6GVT
install
false
offline_keylogger
false
persistence
false

Targets

- Target
  
  1cd1f9263c7dd0df76f1df604d1ccf94ce4d48b5564dbde6198adc16d57116f2
- Size
  
  658KB
- MD5
  
  6a7854f60a2b475a219e85781ab58680
- SHA1
  
  eabc82581f19bbfb5c995f279bca26b81b317713
- SHA256
  
  1cd1f9263c7dd0df76f1df604d1ccf94ce4d48b5564dbde6198adc16d57116f2
- SHA512
  
  dcee81a44efdfa3cbf6ea5d6ee8105e23aee070b812e96600fd40baba65eede6b8977058043ed47f4415991b3fdef3349bbdb28c4adf2769d5480fa48a2c654b
- SSDEEP
  
  12288:C9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hA:uZ1xuVVjfFoynPaVBUR8f+kN10EBa
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

guest16darkcomet

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan