General
-
Target
f078ebeb80cabc5bc6448d58a42f9314f4c8893a0436415d49e5520eb67ff2ed
-
Size
788KB
-
Sample
221203-dg4z1shd97
-
MD5
2e75ad08a9b982515f53f852ad744a76
-
SHA1
4f4a61300ef5df02edbbdbcbeb22b2995ebf5898
-
SHA256
f078ebeb80cabc5bc6448d58a42f9314f4c8893a0436415d49e5520eb67ff2ed
-
SHA512
479237b20cee15a9cea055404cdc8d2be1f2642a905e843411a5bdfa2b86011cdacd4e34aa1a1ac995a30f78a266246634644747357050298576c135fa91734b
-
SSDEEP
24576:zFoXBnpw8bzRhObDkvEbSDKC2UmKaHZz/mt/E:pYBny0zD0DkvG8mKQKt/E
Static task
static1
Behavioral task
behavioral1
Sample
f078ebeb80cabc5bc6448d58a42f9314f4c8893a0436415d49e5520eb67ff2ed.exe
Resource
win7-20220812-en
Malware Config
Extracted
darkcomet
Guest56
demonza001.no-ip.org:82
192.168.1.20:82
DC_MUTEX-G11EJLX
-
gencode
rt0CHvdzwbUk
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
f078ebeb80cabc5bc6448d58a42f9314f4c8893a0436415d49e5520eb67ff2ed
-
Size
788KB
-
MD5
2e75ad08a9b982515f53f852ad744a76
-
SHA1
4f4a61300ef5df02edbbdbcbeb22b2995ebf5898
-
SHA256
f078ebeb80cabc5bc6448d58a42f9314f4c8893a0436415d49e5520eb67ff2ed
-
SHA512
479237b20cee15a9cea055404cdc8d2be1f2642a905e843411a5bdfa2b86011cdacd4e34aa1a1ac995a30f78a266246634644747357050298576c135fa91734b
-
SSDEEP
24576:zFoXBnpw8bzRhObDkvEbSDKC2UmKaHZz/mt/E:pYBny0zD0DkvG8mKQKt/E
-
Suspicious use of SetThreadContext
-