General
-
Target
448a19d4eaa753aca293afde7a8acc8024f1dbbb51649f5e85589bb72749c6d7
-
Size
600KB
-
Sample
230207-qq3jrsbh64
-
MD5
5f32b0f8f0d6d524969702481267cb16
-
SHA1
61619717f178232d276dd5cdd86290aac5ff3cdf
-
SHA256
448a19d4eaa753aca293afde7a8acc8024f1dbbb51649f5e85589bb72749c6d7
-
SHA512
139ac17118fc7bdf32fa0d41f410faecf113d070db70f5b286551374490ce3ba09b278a05317c7df210eece4eacd6ca6d892ff66c924d0bcecd02d084c8e34d5
-
SSDEEP
12288:W2Q+/YvU2uVApVQVraqhxJJB8Ly4bBBqoje8ze6k:WuzPYV9l
Static task
static1
Behavioral task
behavioral1
Sample
448a19d4eaa753aca293afde7a8acc8024f1dbbb51649f5e85589bb72749c6d7.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
448a19d4eaa753aca293afde7a8acc8024f1dbbb51649f5e85589bb72749c6d7.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
darkcomet
IYKE LOGS
127.0.0.1:1604
DC_MUTEX-U2T3MAJ
-
gencode
vb23itbmycw8
-
install
false
-
offline_keylogger
true
-
password
raz@1234567890
-
persistence
false
Targets
-
-
Target
448a19d4eaa753aca293afde7a8acc8024f1dbbb51649f5e85589bb72749c6d7
-
Size
600KB
-
MD5
5f32b0f8f0d6d524969702481267cb16
-
SHA1
61619717f178232d276dd5cdd86290aac5ff3cdf
-
SHA256
448a19d4eaa753aca293afde7a8acc8024f1dbbb51649f5e85589bb72749c6d7
-
SHA512
139ac17118fc7bdf32fa0d41f410faecf113d070db70f5b286551374490ce3ba09b278a05317c7df210eece4eacd6ca6d892ff66c924d0bcecd02d084c8e34d5
-
SSDEEP
12288:W2Q+/YvU2uVApVQVraqhxJJB8Ly4bBBqoje8ze6k:WuzPYV9l
-
Suspicious use of SetThreadContext
-