darkcomet | d9d705a576cd648367347144e2bbacd697982b703fb0fdec295e5cd81968a858 | Triage

Sharing

General

Target

d9d705a576cd648367347144e2bbacd697982b703fb0fdec295e5cd81968a858.exe
Size

955KB
Sample

240412-b1cnrseg2v
MD5

1f5f44a1bb3a084bd08fddfcaec1e2b7
SHA1

3d7936875aa22c15878308805f143270ab5f0dfe
SHA256

d9d705a576cd648367347144e2bbacd697982b703fb0fdec295e5cd81968a858
SHA512

887fe7432e0b562dd2df9a2a204908e8ebe2d64c2de84eb80165f6265d7209f95e1b888338f60db50306e332e0d0452cb4756861c3b43a660899fa3cd42fd096
SSDEEP

12288:KX2JVHMRtDaSm3TJvVNvWV5YTsY7tHwbz/htfcoCoK632zbe3/:Uss2Sm39NNv9wY7tHwbzfIoK6M8

Score

10^/10

darkcomet guest16 upx

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

10.10.0.100:1604

Mutex

DC_MUTEX-F54S21D

Attributes

InstallPath
MSDCSC\msdcsc.exe
gencode
gT3AYpfW5Hj0
install
true
offline_keylogger
true
persistence
false
reg_key
MicroUpdate

Targets

- Target
  
  d9d705a576cd648367347144e2bbacd697982b703fb0fdec295e5cd81968a858.exe
- Size
  
  955KB
- MD5
  
  1f5f44a1bb3a084bd08fddfcaec1e2b7
- SHA1
  
  3d7936875aa22c15878308805f143270ab5f0dfe
- SHA256
  
  d9d705a576cd648367347144e2bbacd697982b703fb0fdec295e5cd81968a858
- SHA512
  
  887fe7432e0b562dd2df9a2a204908e8ebe2d64c2de84eb80165f6265d7209f95e1b888338f60db50306e332e0d0452cb4756861c3b43a660899fa3cd42fd096
- SSDEEP
  
  12288:KX2JVHMRtDaSm3TJvVNvWV5YTsY7tHwbz/htfcoCoK632zbe3/:Uss2Sm39NNv9wY7tHwbzfIoK6M8
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

upxguest16darkcomet

behavioral1

behavioral2