Overview

overview

10

Static

static

3

f1ab64464f...18.exe

windows7-x64

10

f1ab64464f...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1ab64464f0534e75123ab6e5f42dd6c_JaffaCakes118

  • Size

    796KB

  • Sample

    240415-wrerzsfa9x

  • MD5

    f1ab64464f0534e75123ab6e5f42dd6c

  • SHA1

    d9f427e676c7d17a2d2fdafd72ff383361014c83

  • SHA256

    6dd06780f4dacd0f0fc9f044d6200e989e9435ef8977cc3a1396aebad13b1caf

  • SHA512

    89ea99a14dad6a9e94dd191b32e5483472fbcaa3678fdc5a3ed3b0f3a177f2c6da20713705b9a9b517bea55364a8a3bc9c9181ccbfad6d3d87b2fa29bcc321e8

  • SSDEEP

    12288:PKJRoPSM52au1bbL35noWJYjmAPjTrbksHMntHGrxV5YzJbotc6vq20QPXn:GKSc2autL3WOYNLStHGr+9ktc6vqm/

Score
10/10
darkcometrattrojan

Malware Config

Targets

    • Target

      f1ab64464f0534e75123ab6e5f42dd6c_JaffaCakes118

    • Size

      796KB

    • MD5

      f1ab64464f0534e75123ab6e5f42dd6c

    • SHA1

      d9f427e676c7d17a2d2fdafd72ff383361014c83

    • SHA256

      6dd06780f4dacd0f0fc9f044d6200e989e9435ef8977cc3a1396aebad13b1caf

    • SHA512

      89ea99a14dad6a9e94dd191b32e5483472fbcaa3678fdc5a3ed3b0f3a177f2c6da20713705b9a9b517bea55364a8a3bc9c9181ccbfad6d3d87b2fa29bcc321e8

    • SSDEEP

      12288:PKJRoPSM52au1bbL35noWJYjmAPjTrbksHMntHGrxV5YzJbotc6vq20QPXn:GKSc2autL3WOYNLStHGr+9ktc6vqm/

    Score
    10/10
    darkcometrattrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks