General
-
Target
80c01eb5095f443ee91733e875ca3ad9f208453792ce6f3f7825555993e77607
-
Size
820KB
-
Sample
221203-c44r4agd25
-
MD5
335348bdde8b7504a4c4fc5ac784cdff
-
SHA1
4bb83a1aad1dbd89ccb0278a002b4914923ae1f3
-
SHA256
80c01eb5095f443ee91733e875ca3ad9f208453792ce6f3f7825555993e77607
-
SHA512
da87e3ee0bd5bd2f55dfe292034df51ee8ff41b57ba739ea2ba3492045bfd3cede36fa5bdad8ae365a9f86703cda55e13b30f35ee2245491fa88615984c3a024
-
SSDEEP
24576:/L+CsgR8Qn8TFJe48USD6gMmGo7O4gKgulRBm:D+Cv8+6Fk4dSQm97gK9g
Behavioral task
behavioral1
Sample
80c01eb5095f443ee91733e875ca3ad9f208453792ce6f3f7825555993e77607.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
80c01eb5095f443ee91733e875ca3ad9f208453792ce6f3f7825555993e77607.exe
Resource
win10v2004-20220901-en
Malware Config
Extracted
darkcomet
xvjsdkf
74.109.119.83:1905
DCMIN_MUTEX-D1LGNER
-
gencode
fasCeqn8BZ5i
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
80c01eb5095f443ee91733e875ca3ad9f208453792ce6f3f7825555993e77607
-
Size
820KB
-
MD5
335348bdde8b7504a4c4fc5ac784cdff
-
SHA1
4bb83a1aad1dbd89ccb0278a002b4914923ae1f3
-
SHA256
80c01eb5095f443ee91733e875ca3ad9f208453792ce6f3f7825555993e77607
-
SHA512
da87e3ee0bd5bd2f55dfe292034df51ee8ff41b57ba739ea2ba3492045bfd3cede36fa5bdad8ae365a9f86703cda55e13b30f35ee2245491fa88615984c3a024
-
SSDEEP
24576:/L+CsgR8Qn8TFJe48USD6gMmGo7O4gKgulRBm:D+Cv8+6Fk4dSQm97gK9g
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-