General
-
Target
9b21e7b6b31a2aad3f8bb60f807d0e1e
-
Size
911KB
-
Sample
240214-jflpyach8v
-
MD5
9b21e7b6b31a2aad3f8bb60f807d0e1e
-
SHA1
8000d28c0d38c2716e0dd36581a0bdad4d1d9958
-
SHA256
95f70fe6ad7b2412d4b71deca522857b33f8579f570ec07f108c2224dce0592f
-
SHA512
fecee9437eff6719ae30850b4761d7afdbcdbcdfc5bfbafb8c392971676381089a2665b2d3890eef613fdf6dca2d018e4d7f96c264172f49c168f928b3cc01d5
-
SSDEEP
24576:vgX5/aWAevvoUA+eD0ZihN1LZTOI8CEc6vJvrOj6:vBAv3ACFrOW
Static task
static1
Behavioral task
behavioral1
Sample
9b21e7b6b31a2aad3f8bb60f807d0e1e.exe
Resource
win7-20231129-en
Malware Config
Extracted
darkcomet
Vic
pablo1234.no-ip.org:65
DC_MUTEX-LQL5G6H
-
InstallPath
MSDCSC\msdcsc.exe
-
gencode
H4jqSRgnBR8W
-
install
true
-
offline_keylogger
false
-
password
0123456789
-
persistence
true
-
reg_key
MicroUpdate
Targets
-
-
Target
9b21e7b6b31a2aad3f8bb60f807d0e1e
-
Size
911KB
-
MD5
9b21e7b6b31a2aad3f8bb60f807d0e1e
-
SHA1
8000d28c0d38c2716e0dd36581a0bdad4d1d9958
-
SHA256
95f70fe6ad7b2412d4b71deca522857b33f8579f570ec07f108c2224dce0592f
-
SHA512
fecee9437eff6719ae30850b4761d7afdbcdbcdfc5bfbafb8c392971676381089a2665b2d3890eef613fdf6dca2d018e4d7f96c264172f49c168f928b3cc01d5
-
SSDEEP
24576:vgX5/aWAevvoUA+eD0ZihN1LZTOI8CEc6vJvrOj6:vBAv3ACFrOW
-
Suspicious use of SetThreadContext
-