General

  • Target

    6586ea62aca5bd37ce2a541b78f7ab83

  • Size

    796KB

  • Sample

    240118-t89ycaebe4

  • MD5

    6586ea62aca5bd37ce2a541b78f7ab83

  • SHA1

    279df6578560743cccafe435149df6cc94bdab84

  • SHA256

    585feda102c8a2bab5774dc21ab29af85a7ecdfc214e9f6fdf8b6d0c9ae77594

  • SHA512

    ed7ca43f1bc5475cdc09f9de0d54808663cc09696131a095f5be9fa556377b78fa8318e7365edfaf29cb2e773081cef84bd214a4b517fec20c08f20aa2775c50

  • SSDEEP

    24576:mowFvctRkNNGymJx7lLeKXWYJm4I2ytsX:nwFvikrmr7lKsdI2

Score
10/10

Malware Config

Targets

    • Target

      6586ea62aca5bd37ce2a541b78f7ab83

    • Size

      796KB

    • MD5

      6586ea62aca5bd37ce2a541b78f7ab83

    • SHA1

      279df6578560743cccafe435149df6cc94bdab84

    • SHA256

      585feda102c8a2bab5774dc21ab29af85a7ecdfc214e9f6fdf8b6d0c9ae77594

    • SHA512

      ed7ca43f1bc5475cdc09f9de0d54808663cc09696131a095f5be9fa556377b78fa8318e7365edfaf29cb2e773081cef84bd214a4b517fec20c08f20aa2775c50

    • SSDEEP

      24576:mowFvctRkNNGymJx7lLeKXWYJm4I2ytsX:nwFvikrmr7lKsdI2

    Score
    10/10
    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks