darkcomet | 193076442e8e81094d5da104c265d15cfc614d0cefeaef5873eddf07b1301983 | Triage

Sharing

General

Target

f2dee5945a3f56fff40b4ab53b029d91_JaffaCakes118
Size

621KB
Sample

240416-g1k8ssda81
MD5

f2dee5945a3f56fff40b4ab53b029d91
SHA1

0eb59b2657c24ad1fbd66835dad9b5dc58991197
SHA256

193076442e8e81094d5da104c265d15cfc614d0cefeaef5873eddf07b1301983
SHA512

d42af8cd3c0a404631c15540328631bbec3a5654b8b562e0c405e72aee157195714495278170441460cedff45a841a48f0eab1a8f931a2055c827453ea15c9d2
SSDEEP

12288:1sXoKy9Q58lYukxzFaKprKwQAT5tqYdvuqxo81wnSJPlJhR5lTuYrBaTU1f3:1sXDfumMKpr2AtQYdvuqx51ASJPl3rt9

Score

10^/10

darkcomet rat trojan

Malware Config

Targets

- Target
  
  f2dee5945a3f56fff40b4ab53b029d91_JaffaCakes118
- Size
  
  621KB
- MD5
  
  f2dee5945a3f56fff40b4ab53b029d91
- SHA1
  
  0eb59b2657c24ad1fbd66835dad9b5dc58991197
- SHA256
  
  193076442e8e81094d5da104c265d15cfc614d0cefeaef5873eddf07b1301983
- SHA512
  
  d42af8cd3c0a404631c15540328631bbec3a5654b8b562e0c405e72aee157195714495278170441460cedff45a841a48f0eab1a8f931a2055c827453ea15c9d2
- SSDEEP
  
  12288:1sXoKy9Q58lYukxzFaKprKwQAT5tqYdvuqxo81wnSJPlJhR5lTuYrBaTU1f3:1sXDfumMKpr2AtQYdvuqx51ASJPl3rt9
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan