darkcomet | 97e8ebd0b4c7691a7f790142e22b00a48c429323105de9d6a64051c71f25f94b | Triage

Sharing

General

Target

672-85-0x0000000000400000-0x000000000063B000-memory.dmp
Size

2MB
Sample

230707-cm348sga9y
MD5

bba4f378878d0e59562508efdd4acc99
SHA1

5f6225dc2134ffefadee36ab60ddd465fc8f714b
SHA256

97e8ebd0b4c7691a7f790142e22b00a48c429323105de9d6a64051c71f25f94b
SHA512

82437b234711fda902d733c99f892ffd8f5b3df842ad6f72a0355dac24cd651a8ce0c5627253dccfb9cce00f17351acfe0cff8929a027ce23d88d498a0c7c04d
SSDEEP

24576:tZ1xuVVjfFoynPaVBUR8f+kN10EBUcCT67wHqWis4l+jIACFr5hqjiLDpSJDN93o:3QDgok30ICpn8t74iA3qb6W8cU4

Score

10^/10

darkcomet june 2023

Malware Config

Extracted

Family

darkcomet

Botnet

JUNE 2023

C2

timmy08.ddns.net:39399

Mutex

DC_MUTEX-23X1DZM

Attributes

InstallPath
MSDCSC\msdcsc.exe
gencode
Rn451shW1Y0e
install
true
offline_keylogger
true
persistence
true
reg_key
chrome

Targets

- Target
  
  672-85-0x0000000000400000-0x000000000063B000-memory.dmp
- Size
  
  2MB
- MD5
  
  bba4f378878d0e59562508efdd4acc99
- SHA1
  
  5f6225dc2134ffefadee36ab60ddd465fc8f714b
- SHA256
  
  97e8ebd0b4c7691a7f790142e22b00a48c429323105de9d6a64051c71f25f94b
- SHA512
  
  82437b234711fda902d733c99f892ffd8f5b3df842ad6f72a0355dac24cd651a8ce0c5627253dccfb9cce00f17351acfe0cff8929a027ce23d88d498a0c7c04d
- SSDEEP
  
  24576:tZ1xuVVjfFoynPaVBUR8f+kN10EBUcCT67wHqWis4l+jIACFr5hqjiLDpSJDN93o:3QDgok30ICpn8t74iA3qb6W8cU4
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

june 2023darkcomet

behavioral1

behavioral2