darkcomet | cef3d74527702315be8fd0c7c804d0dd4a33d411c0c3c9228b9ae91019e8af52 | Triage

Submit
Reports

Overview

overview

Static

static

3

fe2a5ad05e...18.exe

windows7-x64

fe2a5ad05e...18.exe

windows10-2004-x64

Sharing

General

Target

fe2a5ad05e643c977aafc479acb4f58c_JaffaCakes118
Size

700KB
Sample

240421-ce349sgb88
MD5

fe2a5ad05e643c977aafc479acb4f58c
SHA1

4211af0be5a8439c9204de34da69c4dee9278f79
SHA256

cef3d74527702315be8fd0c7c804d0dd4a33d411c0c3c9228b9ae91019e8af52
SHA512

7455b1cba28a39490b327699aded5302864bc8db253790d402c3128da69dcdf5a62d24ec9e90dfca781f0ff34a9665da88c28e588322461473383327398c7f56
SSDEEP

12288:qTjaLtqmSDXDfCEpcjlsgCakhPY88P3N3qFls31dDV3wSLjTd+9oKAJ:qHaZ3SDzaEpClnCJhYT/N3Ei3RSoF

Score

10^/10

darkcomet rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fe2a5ad05e643c977aafc479acb4f58c_JaffaCakes118.exe

Resource

win7-20240221-en

darkcomet rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

fe2a5ad05e643c977aafc479acb4f58c_JaffaCakes118.exe

Resource

win10v2004-20240412-en

darkcomet rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  fe2a5ad05e643c977aafc479acb4f58c_JaffaCakes118
- Size
  
  700KB
- MD5
  
  fe2a5ad05e643c977aafc479acb4f58c
- SHA1
  
  4211af0be5a8439c9204de34da69c4dee9278f79
- SHA256
  
  cef3d74527702315be8fd0c7c804d0dd4a33d411c0c3c9228b9ae91019e8af52
- SHA512
  
  7455b1cba28a39490b327699aded5302864bc8db253790d402c3128da69dcdf5a62d24ec9e90dfca781f0ff34a9665da88c28e588322461473383327398c7f56
- SSDEEP
  
  12288:qTjaLtqmSDXDfCEpcjlsgCakhPY88P3N3qFls31dDV3wSLjTd+9oKAJ:qHaZ3SDzaEpClnCJhYT/N3Ei3RSoF
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan

© 2018-2024

Terms | Privacy