Overview

overview

10

Static

static

10

fa030b987f...18.exe

windows7-x64

10

fa030b987f...18.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    19-04-2024 09:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fa030b987fca815b8cdce3663e415216_JaffaCakes118.exe

  • Size

    713KB

  • MD5

    fa030b987fca815b8cdce3663e415216

  • SHA1

    fc82653743d5a6d83fe3ddbc6ea5689f608333fc

  • SHA256

    7919528d4673dee39bdd85ff9eea3c5b700d91c394d41e903c8a0d7983517297

  • SHA512

    7e83aa82f91d743064d7966c26b30068a0e1932d10850030f720463933af6d917ac079acd978f4ee82439a07066e18bdcde528294bbe9786351637e16440ec0b

  • SSDEEP

    12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev0IhlULsmWZ++09ZcKDVsYdeX:zAEENIq8XwyVPQclqq/+WnpsaeX

Score
10/10
darkcometrattrojan

Malware Config

Signatures

  • Darkcomet

    DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    trojanratdarkcomet

Processes

  • C:\Users\Admin\AppData\Local\Temp\fa030b987fca815b8cdce3663e415216_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\fa030b987fca815b8cdce3663e415216_JaffaCakes118.exe"
    1⤵
      PID:2416

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2416-0-0x0000000000400000-0x00000000004C0000-memory.dmp

      Filesize

      768KB

      Download