General
-
Target
b769c51477720e476a28dca8fd0bdc75c0537f5b99188a9feea9c77fabe5175b
-
Size
233KB
-
Sample
221202-rlgl6sac21
-
MD5
3b45750da08b64cd4cba7ec43bed90b4
-
SHA1
ce300017c8ad2aef3d98090a35770b96011049bf
-
SHA256
b769c51477720e476a28dca8fd0bdc75c0537f5b99188a9feea9c77fabe5175b
-
SHA512
1ee0935fc6043172a33f30295c3a216313b27a1c4a604dcb22d82fcca1bddc5807f6f7c2644a55da24168da96eb8096b3dfdfd4cf07645c8d5536b7da0f0e1b4
-
SSDEEP
6144:54CFfifD2gVKVTQQ249HZ52KTh9XKOCgLJacj5/AZtRs:5Xgr8VMQDT52WXKq9fj5/AZj
Malware Config
Targets
-
-
Target
b769c51477720e476a28dca8fd0bdc75c0537f5b99188a9feea9c77fabe5175b
-
Size
233KB
-
MD5
3b45750da08b64cd4cba7ec43bed90b4
-
SHA1
ce300017c8ad2aef3d98090a35770b96011049bf
-
SHA256
b769c51477720e476a28dca8fd0bdc75c0537f5b99188a9feea9c77fabe5175b
-
SHA512
1ee0935fc6043172a33f30295c3a216313b27a1c4a604dcb22d82fcca1bddc5807f6f7c2644a55da24168da96eb8096b3dfdfd4cf07645c8d5536b7da0f0e1b4
-
SSDEEP
6144:54CFfifD2gVKVTQQ249HZ52KTh9XKOCgLJacj5/AZtRs:5Xgr8VMQDT52WXKq9fj5/AZj
Score10/10-
Darkcomet
DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
-
Modifies firewall policy service
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-