Overview

overview

10

Static

static

10

037165fd04...f7.exe

windows7-x64

1

037165fd04...f7.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4ba50ebb4b7d7aea3b2814479bf14bda.bin

  • Size

    2.9MB

  • Sample

    240413-blws4ahe67

  • MD5

    47f7f5ae24f41b0e66d868da7ffdb9a7

  • SHA1

    e8485d7f561b79f48f5b8bd3e9992d20e6e8586e

  • SHA256

    bf75b79c9a7e9d438085d72b419283459d0d35a26e9db1fab7f44f9460548ac6

  • SHA512

    51928ccc887b0f1f3a1b3773bf69387c26cf926404165b81f7d41d7841675969bf73665d9cdf840473632b5db1a15af64a209584ceedef4061c357e275a99887

  • SSDEEP

    49152:71zlTG4DCJF8ANGDwCpDM+GwVVm2UGfk8ewckjj2wlX+D3uMft:lo4DCJF8vj9MZw22pDek/+Tdft

Score
10/10
darkcometnew-july-july4-02upx

Malware Config

Extracted

Family

darkcomet

Botnet

New-July-July4-02

C2

dgorijan20785.hopto.org:35800

Mutex

DC_MUTEX-JFYU2BC

Attributes
  • gencode

    UkVkDi2EZxxn

  • install

    false

  • offline_keylogger

    true

  • password

    hhhhhh

  • persistence

    false

Targets

    • Target

      037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7.exe

    • Size

      4.3MB

    • MD5

      4ba50ebb4b7d7aea3b2814479bf14bda

    • SHA1

      3f7701b35140a6914807f18fa6a71b369c278000

    • SHA256

      037165fd0435a477539e437c28f25a2e188d0da72b7573aa7d85b26eb34feef7

    • SHA512

      c39c15361da06723ebcbc95deaa0612fb04ced9591f53a1d4811883d174ebe945517a787bc851e67a5e1b62aad8d8dc46b9f6d3052f046654e16327559640263

    • SSDEEP

      98304:lQU/qUMczSwPp0UMAKZd2SEQUMCZOr1ECUMmZOr1EOUMO0ZuLVEAUMSZpq2E:lQZXrAsd2SEG0Or1EswOr1E4JuLVEWEa

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks