Overview

overview

10

Static

static

7

00adb69027...18.exe

windows7-x64

10

00adb69027...18.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    00adb6902705deb45ed9078f1028acfa_JaffaCakes118

  • Size

    1.5MB

  • Sample

    240622-bzn1eaveql

  • MD5

    00adb6902705deb45ed9078f1028acfa

  • SHA1

    0eef359993fcafcb87083103df10b300645f5bb8

  • SHA256

    8a21fe76aa1f0049e26454bf401c8388754dbe73aaf3ed4039ab5812da21e66e

  • SHA512

    7a281d924c471790b77022ef82b8e2fb6dfe6cfce2267c4624a4c417260631dc0d9687bda9b215c4d887c089e95613ecc9b674975b2587c031a7f39d23bba565

  • SSDEEP

    24576:i7xYuL0T+YTWR2o/eR+CXJuObTryu60ZE7hXPz6Lcyz4x9s6gJZKCX6hB6QRw7R1:iFaiYT0LmbTryu60ZEtPUtLGBdi6+

Score
10/10
darkcometratthemidatrojan

Malware Config

Targets

    • Target

      00adb6902705deb45ed9078f1028acfa_JaffaCakes118

    • Size

      1.5MB

    • MD5

      00adb6902705deb45ed9078f1028acfa

    • SHA1

      0eef359993fcafcb87083103df10b300645f5bb8

    • SHA256

      8a21fe76aa1f0049e26454bf401c8388754dbe73aaf3ed4039ab5812da21e66e

    • SHA512

      7a281d924c471790b77022ef82b8e2fb6dfe6cfce2267c4624a4c417260631dc0d9687bda9b215c4d887c089e95613ecc9b674975b2587c031a7f39d23bba565

    • SSDEEP

      24576:i7xYuL0T+YTWR2o/eR+CXJuObTryu60ZE7hXPz6Lcyz4x9s6gJZKCX6hB6QRw7R1:iFaiYT0LmbTryu60ZEtPUtLGBdi6+

    Score
    10/10
    darkcometratthemidatrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Tasks