darkcomet | de12d7e96bd00a07099f4274731ff1e4ee681d58e0ca5934447facee666d359a | Triage

Submit
Reports

Overview

overview

Static

static

3

f49845b2e7...18.exe

windows7-x64

f49845b2e7...18.exe

windows10-2004-x64

Sharing

General

Target

f49845b2e7a4b36f84c99496429b64d2_JaffaCakes118
Size

1.3MB
Sample

240416-3tzy9sfg95
MD5

f49845b2e7a4b36f84c99496429b64d2
SHA1

44f3023b4ca0e1273c5ba6462c6149ea5470eb11
SHA256

de12d7e96bd00a07099f4274731ff1e4ee681d58e0ca5934447facee666d359a
SHA512

77de07b5017a9b24247b747ba1b03e25575dd35cc3ae33ac3a507125c6bcf701df2983b2738477e33c5fff6a2fa630843ee43fa4809a0e1e9aeeff2682514435
SSDEEP

12288:3BHuJhZhw7Yz/2efLcOC9aF6SO+7NPJ3g2hJZa9dS7zelG64Nv9L/2Vhix6IxHbK:3ghvzcOZ6OrHOyN6IxtnN9dbWuox

Score

10^/10

darkcomet rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f49845b2e7a4b36f84c99496429b64d2_JaffaCakes118.exe

Resource

win7-20240215-en

darkcomet rat trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

f49845b2e7a4b36f84c99496429b64d2_JaffaCakes118.exe

Resource

win10v2004-20240412-en

darkcomet rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  f49845b2e7a4b36f84c99496429b64d2_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  f49845b2e7a4b36f84c99496429b64d2
- SHA1
  
  44f3023b4ca0e1273c5ba6462c6149ea5470eb11
- SHA256
  
  de12d7e96bd00a07099f4274731ff1e4ee681d58e0ca5934447facee666d359a
- SHA512
  
  77de07b5017a9b24247b747ba1b03e25575dd35cc3ae33ac3a507125c6bcf701df2983b2738477e33c5fff6a2fa630843ee43fa4809a0e1e9aeeff2682514435
- SSDEEP
  
  12288:3BHuJhZhw7Yz/2efLcOC9aF6SO+7NPJ3g2hJZa9dS7zelG64Nv9L/2Vhix6IxHbK:3ghvzcOZ6OrHOyN6IxtnN9dbWuox
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan

© 2018-2024

Terms | Privacy