68006a92b725e68495a759e120ad3a1f | Triage

Submit
Reports

Overview

overview

Static

static

1

68006a92b7...1f.exe

windows7-x64

68006a92b7...1f.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

68006a92b725e68495a759e120ad3a1f.exe

Resource

win7-20231215-en

darkcomet guest16 persistence rat trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

68006a92b725e68495a759e120ad3a1f.exe

Resource

win10v2004-20231215-en

darkcomet guest16 persistence rat trojan

windows10-2004-x64

11 signatures

150 seconds

General

Target

68006a92b725e68495a759e120ad3a1f
Size

929KB
MD5

68006a92b725e68495a759e120ad3a1f
SHA1

eaff3532840cae88f54fc30f0daa986cac326baf
SHA256

22e423eafb3a09cd1ebdaaf74d56d417ff15014411584ca7776037c816a94c8c
SHA512

a7739feb56c989c4e4ad473837c3e4059a7101d7fe50841392f5f02be76f6baa6350fb8a92c4bf5cfbd17080b8f2461665ece527accbf9db8b0ac4d02b3b8199
SSDEEP

24576:wY7GkZo8KDevbwZqyXRg6JCauMbZVjIwCzCZS:woZ2DYbCNXtJCCbZVjAH

Score

1^/10

Malware Config

Signatures

Files

68006a92b725e68495a759e120ad3a1f
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Code Sign

6c:7c:17:23:38:1a:15:a4:41:61:85:1a:89:4b:f5:45
Certificate

Issuer

CN=SmartFTP Client

Not Before

02/01/2014, 12:56

Not After

02/01/2114, 12:56

Subject

CN=SmartFTP Client

27:43:ea:8b:59:c4:7e:4c:fc:e7:14:18:aa:e8:fe:5e:75:b2:db:ce
Signer

Actual PE Digest

27:43:ea:8b:59:c4:7e:4c:fc:e7:14:18:aa:e8:fe:5e:75:b2:db:ce

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 924KB - Virtual size: 923KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy