General

  • Target

    a16a87582b1fa805f44465fc76b97446_JaffaCakes118

  • Size

    827KB

  • MD5

    a16a87582b1fa805f44465fc76b97446

  • SHA1

    41af022e92e97254399fd36d68acc845526e4452

  • SHA256

    aade5180b671a74055e5e24f6068c88169fdbdb393d621560613d35b25d6ac85

  • SHA512

    f3fc79f4da694c0212d6919a8e3c4d8e0dc2eb88afb8b0e6a3a1234cf6d2b5385fee8a804f9cb5b437b38cee08e72a2e0eee3f254d540dc127614a48293fe87d

  • SSDEEP

    12288:Y9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9EkNC/xL:MZ1xuVVjfFoynPaVBUR8f+kN10Edx

Score
10/10

Malware Config

Extracted

Family

darkcomet

Botnet

kingraider

C2

gta5menu.no-ip.biz:101

Mutex

DC_MUTEX-W1JXX8X

Attributes
  • InstallPath

    MSDCSC\msdcsc.exe

  • gencode

    174XWToCVXoX

  • install

    true

  • offline_keylogger

    true

  • persistence

    true

  • reg_key

    MicroUpdate

Signatures

  • Darkcomet family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a16a87582b1fa805f44465fc76b97446_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.