darkcomet | 037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7 | Triage

Sharing

General

Target

037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7.exe
Size

4.3MB
Sample

240411-s6292shh4y
MD5

4ba50ebb4b7d7aea3b2814479bf14bda
SHA1

3f7701b35140a6914807f18fa6a71b369c278000
SHA256

037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7
SHA512

c39c15361da06723ebcbc95deaa0612fb04ced9591f53a1d4811883d174ebe945517a787bc851e67a5e1b62aad8d8dc46b9f6d3052f046654e16327559640263
SSDEEP

98304:lQU/qUMczSwPp0UMAKZd2SEQUMCZOr1ECUMmZOr1EOUMO0ZuLVEAUMSZpq2E:lQZXrAsd2SEG0Or1EswOr1E4JuLVEWEa

Score

10^/10

darkcomet new-july-july4-02 upx

Malware Config

Extracted

Family

darkcomet

Botnet

New-July-July4-02

C2

dgorijan20785.hopto.org:35800

Mutex

DC_MUTEX-JFYU2BC

Attributes

gencode
UkVkDi2EZxxn
install
false
offline_keylogger
true
password
hhhhhh
persistence
false

Targets

- Target
  
  037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7.exe
- Size
  
  4.3MB
- MD5
  
  4ba50ebb4b7d7aea3b2814479bf14bda
- SHA1
  
  3f7701b35140a6914807f18fa6a71b369c278000
- SHA256
  
  037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7
- SHA512
  
  c39c15361da06723ebcbc95deaa0612fb04ced9591f53a1d4811883d174ebe945517a787bc851e67a5e1b62aad8d8dc46b9f6d3052f046654e16327559640263
- SSDEEP
  
  98304:lQU/qUMczSwPp0UMAKZd2SEQUMCZOr1ECUMmZOr1EOUMO0ZuLVEAUMSZpq2E:lQZXrAsd2SEG0Or1EswOr1E4JuLVEWEa
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

upxnew-july-july4-02darkcomet

behavioral1

behavioral2