General

  • Target

    9abde190917414b7311b646879ffd519b87bf98143d5a7005d61f45bd906cd5b

  • Size

    712KB

  • MD5

    6d9ea714f6d65e5c25236b6a098e7d24

  • SHA1

    57a9bc3631b7b409087ad8e2bb2eb133e453789f

  • SHA256

    9abde190917414b7311b646879ffd519b87bf98143d5a7005d61f45bd906cd5b

  • SHA512

    99ff2d682582e63be83e8cf499650a648b8bc5c8e6c8b0635d77add2fa8c9e4a1a58cb9d1fd807a726cca33e84d4636f0789c269cd6f2b76a76c44419851eb00

  • SSDEEP

    12288:79HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/h:1Z1xuVVjfFoynPaVBUR8f+kN10EB

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

velkypan.no-ip.biz:2000

Mutex

DC_MUTEX-FL22Q0Z

Attributes
  • InstallPath

    MSDCSC\msdcdsc.exe

  • gencode

    NgnnhwaHPpbg

  • install

    true

  • offline_keylogger

    true

  • persistence

    true

  • reg_key

    MicroUpdates

Signatures

Files

  • 9abde190917414b7311b646879ffd519b87bf98143d5a7005d61f45bd906cd5b
    .exe windows x86


    Headers

    Sections