Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

a5d6ff5bbb...25.exe

windows7-x64

10

a5d6ff5bbb...25.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a5d6ff5bbbc5b350b938c7b2e09763b0935f00d41c01cc737b46bdd930f11625

  • Size

    1.9MB

  • Sample

    221201-yt3myafe63

  • MD5

    c3ca6491e9f241573ba01a073939703a

  • SHA1

    29669a848b04b3a7faa09bbf3047df0e73121fd6

  • SHA256

    a5d6ff5bbbc5b350b938c7b2e09763b0935f00d41c01cc737b46bdd930f11625

  • SHA512

    ffb9bf92d06c7a17671e461a13972a45e6cc8ab0c0199691f02f12b662cb1ae141ebca9047a98f2efbd585cc4e2149bd1d973ae13cd1af11b89587931e395c5d

  • SSDEEP

    12288:35aqIbcW23TOLBlucS5nuISmFU7yYitKG6pydB4FOyD2wWT1tII0TzwfG1ydf6qS:QqcILKG6nGFm2WM4a0h

Score
10/10
darkcometrattrojan

Malware Config

Targets

    • Target

      a5d6ff5bbbc5b350b938c7b2e09763b0935f00d41c01cc737b46bdd930f11625

    • Size

      1.9MB

    • MD5

      c3ca6491e9f241573ba01a073939703a

    • SHA1

      29669a848b04b3a7faa09bbf3047df0e73121fd6

    • SHA256

      a5d6ff5bbbc5b350b938c7b2e09763b0935f00d41c01cc737b46bdd930f11625

    • SHA512

      ffb9bf92d06c7a17671e461a13972a45e6cc8ab0c0199691f02f12b662cb1ae141ebca9047a98f2efbd585cc4e2149bd1d973ae13cd1af11b89587931e395c5d

    • SSDEEP

      12288:35aqIbcW23TOLBlucS5nuISmFU7yYitKG6pydB4FOyD2wWT1tII0TzwfG1ydf6qS:QqcILKG6nGFm2WM4a0h

    Score
    10/10
    darkcometrattrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks