darkcomet | b6f857cd2fc73b1315f23491dfbd9c23af358011a43a2b30160464d7a8efa78c | Triage

Sharing

General

Target

b6f857cd2fc73b1315f23491dfbd9c23af358011a43a2b30160464d7a8efa78c
Size

658KB
Sample

221202-ehz8wsbe59
MD5

cb98511378c107789c310c6fc3cc95a7
SHA1

4fc040ccebdff5d6d01a40bc548834991bbacd5d
SHA256

b6f857cd2fc73b1315f23491dfbd9c23af358011a43a2b30160464d7a8efa78c
SHA512

59fcf4301cc5e66fac04038553d9ca8b0595b1e26af6ee38120440ffc12a8fd3ff377ef26f5a1d117e905f461930203fc577abdda6867d69e91835430e1e8c27
SSDEEP

12288:C9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hG:uZ1xuVVjfFoynPaVBUR8f+kN10EBI

Score

10^/10

darkcomet random rat trojan

Malware Config

Extracted

Family

darkcomet

Botnet

random

C2

siurbedark.zapto.org:1604

Mutex

DC_MUTEX-95JEJ4A

Attributes

gencode
LXeBQDDrW3d1
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  b6f857cd2fc73b1315f23491dfbd9c23af358011a43a2b30160464d7a8efa78c
- Size
  
  658KB
- MD5
  
  cb98511378c107789c310c6fc3cc95a7
- SHA1
  
  4fc040ccebdff5d6d01a40bc548834991bbacd5d
- SHA256
  
  b6f857cd2fc73b1315f23491dfbd9c23af358011a43a2b30160464d7a8efa78c
- SHA512
  
  59fcf4301cc5e66fac04038553d9ca8b0595b1e26af6ee38120440ffc12a8fd3ff377ef26f5a1d117e905f461930203fc577abdda6867d69e91835430e1e8c27
- SSDEEP
  
  12288:C9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hG:uZ1xuVVjfFoynPaVBUR8f+kN10EBI
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

randomdarkcomet

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan