General
-
Target
d05fe560a6792e7670d3c364aca662404419987da09053677fd82ec22e3d6b81
-
Size
360KB
-
Sample
221203-gnvlpsdh9z
-
MD5
e9315ceafef7f09fbbb52d99ef06cc32
-
SHA1
390d24ca5949883294ef10585ca1fce11016ce9c
-
SHA256
d05fe560a6792e7670d3c364aca662404419987da09053677fd82ec22e3d6b81
-
SHA512
7f8f21337f6cd8024d257efc8c92c7fda03f72a4b9b2aa9647df65171aaeaf5a427953043a19f44660d9b10ab1d6b2f368178f6e0c738fbce7ee9aedec745625
-
SSDEEP
6144:ljXmPZ3/BL3LuJ5Toj6ZbpgsU1spq/0BHKRVSPndFGzv2dHkUZ8uqL+Dpi2+x:lih3NuJ5ToYRUCHKLSmzedHpZCL+Ox
Static task
static1
Behavioral task
behavioral1
Sample
d05fe560a6792e7670d3c364aca662404419987da09053677fd82ec22e3d6b81.exe
Resource
win7-20220812-en
Malware Config
Extracted
darkcomet
Guest16
sattam.no-ip.biz:1604
DC_MUTEX-TELC5DX
-
gencode
0AZVTE47t6Fe
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
d05fe560a6792e7670d3c364aca662404419987da09053677fd82ec22e3d6b81
-
Size
360KB
-
MD5
e9315ceafef7f09fbbb52d99ef06cc32
-
SHA1
390d24ca5949883294ef10585ca1fce11016ce9c
-
SHA256
d05fe560a6792e7670d3c364aca662404419987da09053677fd82ec22e3d6b81
-
SHA512
7f8f21337f6cd8024d257efc8c92c7fda03f72a4b9b2aa9647df65171aaeaf5a427953043a19f44660d9b10ab1d6b2f368178f6e0c738fbce7ee9aedec745625
-
SSDEEP
6144:ljXmPZ3/BL3LuJ5Toj6ZbpgsU1spq/0BHKRVSPndFGzv2dHkUZ8uqL+Dpi2+x:lih3NuJ5ToYRUCHKLSmzedHpZCL+Ox
-
Suspicious use of SetThreadContext
-