darkcomet | aabbc92b83e3bf429f396d84276030bbbc215024d2ce67851526d9d8bcf612fd | Triage

Submit
Reports

Overview

overview

Static

static

02bea89782...18.exe

windows7-x64

02bea89782...18.exe

windows10-2004-x64

Sharing

General

Target

02bea89782d88c4968083e68a950c2c2_JaffaCakes118
Size

646KB
Sample

240427-jh6swsea94
MD5

02bea89782d88c4968083e68a950c2c2
SHA1

f2baae3cd54e67089d1258ac3729ae3a094d7892
SHA256

aabbc92b83e3bf429f396d84276030bbbc215024d2ce67851526d9d8bcf612fd
SHA512

ce9f9a990678aa1ce0403deed0c6adb28900ed3896f581a7b7d5e94dc3e96146ad411d00a301be4968c2df10fed47af372b87b2c56f8881f517a3f990ff4e796
SSDEEP

12288:N8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1r/:eUKoN0bUxgGa/pfBHDb+y1L

Score

10^/10

darkcomet rat trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

02bea89782d88c4968083e68a950c2c2_JaffaCakes118.exe

Resource

win7-20240221-en

darkcomet rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

02bea89782d88c4968083e68a950c2c2_JaffaCakes118.exe

Resource

win10v2004-20240426-en

darkcomet rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  02bea89782d88c4968083e68a950c2c2_JaffaCakes118
- Size
  
  646KB
- MD5
  
  02bea89782d88c4968083e68a950c2c2
- SHA1
  
  f2baae3cd54e67089d1258ac3729ae3a094d7892
- SHA256
  
  aabbc92b83e3bf429f396d84276030bbbc215024d2ce67851526d9d8bcf612fd
- SHA512
  
  ce9f9a990678aa1ce0403deed0c6adb28900ed3896f581a7b7d5e94dc3e96146ad411d00a301be4968c2df10fed47af372b87b2c56f8881f517a3f990ff4e796
- SSDEEP
  
  12288:N8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1r/:eUKoN0bUxgGa/pfBHDb+y1L
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan

© 2018-2024

Terms | Privacy