Overview

overview

10

Static

static

10

3f2426209a...cs.exe

windows7-x64

1

3f2426209a...cs.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    3f2426209a930ea16dd883dda8dd9a60_NeikiAnalytics.exe

  • Size

    252KB

  • Sample

    240528-mc49nage37

  • MD5

    3f2426209a930ea16dd883dda8dd9a60

  • SHA1

    38fc06b49dd0c3f5f6ba28f4028b95139b6db19a

  • SHA256

    9969617f124e9f0e3e713b1334e3d6b4c0f634b7f32f1a24feba3d2f10cb068b

  • SHA512

    da9ec443b22601dd9214a85cb5388003617423c5e3c1f43d952b6c1ce691df4a157c8fc6d5d66a164dacafed6898d40c8e4098a3af65cc9ee4ed80379754e0b3

  • SSDEEP

    3072:jxkBhC8nctETsIFkmpmxZwpujZ/Xb0nZYsKV01CIqy/ju0:whC8nQEAeZKIujZ/XQcIVu

Score
10/10
darkcometguest16upx

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

dcfocusnik.no-ip.org:1604

Mutex

DC_MUTEX-5B9ACAS

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    MbWdv3TsEtQX

  • install

    true

  • offline_keylogger

    true

  • persistence

    true

  • reg_key

    MicroUpdate

Targets

    • Target

      3f2426209a930ea16dd883dda8dd9a60_NeikiAnalytics.exe

    • Size

      252KB

    • MD5

      3f2426209a930ea16dd883dda8dd9a60

    • SHA1

      38fc06b49dd0c3f5f6ba28f4028b95139b6db19a

    • SHA256

      9969617f124e9f0e3e713b1334e3d6b4c0f634b7f32f1a24feba3d2f10cb068b

    • SHA512

      da9ec443b22601dd9214a85cb5388003617423c5e3c1f43d952b6c1ce691df4a157c8fc6d5d66a164dacafed6898d40c8e4098a3af65cc9ee4ed80379754e0b3

    • SSDEEP

      3072:jxkBhC8nctETsIFkmpmxZwpujZ/Xb0nZYsKV01CIqy/ju0:whC8nQEAeZKIujZ/XQcIVu

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks