darkcomet | 542892dc639bb13bbc6ffb0e7cb10cdecab1c33ac01ee79633496301b1f7e2cc | Triage

Sharing

General

Target

5d0f26def1e96977eeb1afd1e8d81ced_JaffaCakes118
Size

11.6MB
Sample

240520-ehbkjaae84
MD5

5d0f26def1e96977eeb1afd1e8d81ced
SHA1

9ed880d2971ad23b305c26fbc43279b7ee4ec06d
SHA256

542892dc639bb13bbc6ffb0e7cb10cdecab1c33ac01ee79633496301b1f7e2cc
SHA512

117185f9e492a3e6804a384983cf1490f8770033eda25bf2bb99bb605f1b84b7486c9946c39b2fdb07f32bef1ed3b9f87c406dfda8aca15d62778377968b5601
SSDEEP

196608:yKPPUusm5gcGcpNrn5nUU+G7ipimsFqCmdJXeLm9RkQBP3Wlq8/WsfONz0VcExU3:ykMusm5gynUtQiImsQCtC9TPGXuwcExE

Score

10^/10

darkcomet rat trojan

Malware Config

Targets

- Target
  
  DarkComet_jz5u.com/Celesty Binder/最火软件站.url
- Size
  
  179B
- MD5
  
  a9f77e4cd187af05a6a16b372f42190c
- SHA1
  
  c81d9af0b5f5070a48e21b86a1ef6613616a2200
- SHA256
  
  975aaddc0d28d3bdf4f7cebb546d1ec0ff2b9b9a86ffe1642265f9d5f1136f7f
- SHA512
  
  534fd5631b0ba0547709756b8e1564d4d168136f4806d8edd9cd926c101ea31063bb71ab364b93de3c25f5850b1ee19389d539a5e65379d5080b9b1b7412f588
Score

1^/10
behavioral1 behavioral2
- Target
  
  DarkComet_jz5u.com/DarkComet汉化.exe
- Size
  
  11.3MB
- MD5
  
  04bde5caf3c66f1e693fce5e56251b81
- SHA1
  
  f2952503849fc787ce918b5884b9853c85553c90
- SHA256
  
  7090190e99f5afc62b474af7d938ec54f47d353dc24017a678da7a4b0b7ba2f4
- SHA512
  
  69c63bdefcfb79a04922b8a2af31b6acdd18228f02fad067c63a6ecb748297e583f718a543420a99b82468d46cca0a049f98dfd8697283d05289b7a09cd2b956
- SSDEEP
  
  196608:PPvqxSrDTVokQwhM/kUEMTQINokXJw7tWz40VqqQPt:HCxSrFokQw2TjUYqWM0l
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral3 behavioral4
- Target
  
  DarkComet_jz5u.com/JZ5U绿色下载站.url
- Size
  
  111B
- MD5
  
  3e8d917d0d10210cd051d7c251bcb9d9
- SHA1
  
  92bd693746a70ebf302b1f30afbebe1e3d6f4a37
- SHA256
  
  026cee18a5e42425585a1a324fe0894be7cb2fcb1869310ad2a38b73f96e89ef
- SHA512
  
  f676fdeb3cb04db79075adb3e5957dc1722d71a6f7edd03f7cb28b3cce60183e52e952f30c74184799350f0963da5ed8b9b69dfee85eaed49dc724c38985176b
Score

1^/10
behavioral5 behavioral6
- Target
  
  DarkComet_jz5u.com/sqlite3.dll
- Size
  
  510KB
- MD5
  
  d3979db259f55d59b4edb327673c1905
- SHA1
  
  0697e8f35b5951c61a3a632d74fd96843c941628
- SHA256
  
  043e5570299c6099756c1809c5632eabeab95ed3c1a55c86843c0ec218940e5a
- SHA512
  
  0b87c89aafd3e627c7d6bed0b833601fea1917a76a972061f32a2d9e4aa2e9e85b5e8a67cb330ca44aff17915d0fe2793798451a109d3f0b5014eed06b73bb45
- SSDEEP
  
  12288:eiTjR6kna/KzsHIoufPiL5JXjKaarzWovTSmja9q96fQkw8dw:em8NCzsooOPiXT6rSov2mjVw3w
Score

3^/10
behavioral7 behavioral8
- Target
  
  DarkComet_jz5u.com/使用必读.url
- Size
  
  112B
- MD5
  
  b72fb6817f28cc91c35322b3c9864a12
- SHA1
  
  f075eca15246bc681083f3580b6224d43c02506b
- SHA256
  
  e6a86be0cd8f1c493fdb1b9e841255fd36fd12cde26dd2054003603469f08a76
- SHA512
  
  672e0794f73c6210558bad9a985c893704d82d4a203a394ed896c132c8d52ae9a32256c8456d29863e35e35b339b57d55835487c6cf37837e6cd3f5b4cf63b8c
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

behavioral3

darkcometrattrojan

behavioral4

darkcometrattrojan

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10