Overview

overview

10

Static

static

10

2892-14-0x...ry.exe

windows7-x64

2892-14-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2892-14-0x0000000000400000-0x000000000055B000-memory.dmp

  • Size

    1.4MB

  • Sample

    240519-e46mssaf63

  • MD5

    4e86c9add096c4c3908a592e8c94e01e

  • SHA1

    b433681bfdf6e259a2f0023aeb83a74650737a89

  • SHA256

    26e5cea8eee98f979443f77a340b9efea37afce55b9f7b298f7105eabb1b19ac

  • SHA512

    bbe101fa6f86aa49f792457b9eb592b9222e7a22fd16c31e6fcdfc6b73fe8b8a7398c1f2724d0aeda15d44c7b262c2cb3b2e0d1692fef8c8de65ca28bfa05ffe

  • SSDEEP

    24576:iZ1xuVVjfFoynPaVBUR8f+kN10EDDDhKi1A:iQDgok30cDh5A

Score
10/10
darkcomet2024+may3333-newcrtupx

Malware Config

Extracted

Family

darkcomet

Botnet

2024+May3333-newcrt

C2

dgorijan20785.hopto.org:35800

Mutex

DC_MUTEX-M4P4YFY

Attributes
  • InstallPath

    rar.exe

  • gencode

    jSEma97mAgP2

  • install

    true

  • offline_keylogger

    true

  • password

    hhhhhh

  • persistence

    true

  • reg_key

    winrar

Targets

    • Target

      2892-14-0x0000000000400000-0x000000000055B000-memory.dmp

    • Size

      1.4MB

    • MD5

      4e86c9add096c4c3908a592e8c94e01e

    • SHA1

      b433681bfdf6e259a2f0023aeb83a74650737a89

    • SHA256

      26e5cea8eee98f979443f77a340b9efea37afce55b9f7b298f7105eabb1b19ac

    • SHA512

      bbe101fa6f86aa49f792457b9eb592b9222e7a22fd16c31e6fcdfc6b73fe8b8a7398c1f2724d0aeda15d44c7b262c2cb3b2e0d1692fef8c8de65ca28bfa05ffe

    • SSDEEP

      24576:iZ1xuVVjfFoynPaVBUR8f+kN10EDDDhKi1A:iQDgok30cDh5A

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks