General

  • Target

    11283ad37962eea4eabef453584c5e8f_JaffaCakes118

  • Size

    688KB

  • Sample

    240626-h4ee4avejq

  • MD5

    11283ad37962eea4eabef453584c5e8f

  • SHA1

    bfafc486ec9ce5094cf1faaa6b317bf9446a54e0

  • SHA256

    2fe01ec24c9c19b682f0c0217fe21a25401b33b68e50522a41ece04f22d382a4

  • SHA512

    fdcf6311461709327038f241de1decad1e11c4b3d027f805cb76a009ebb76ae000aff4a2a420c6f0e6204eab0285f01467fd5bde712f65df08d70e3f969a2893

  • SSDEEP

    12288:fICCWmBGxoof2s8UcMd7vo0pwXlBZTnnWNQ6R3Z4UfiQd8eiKWXLfOJg6rWhY5xi:QCCWmBKpfA7T0KXlnnAxB595ij7fn6iP

Score
10/10

Malware Config

Targets

    • Target

      11283ad37962eea4eabef453584c5e8f_JaffaCakes118

    • Size

      688KB

    • MD5

      11283ad37962eea4eabef453584c5e8f

    • SHA1

      bfafc486ec9ce5094cf1faaa6b317bf9446a54e0

    • SHA256

      2fe01ec24c9c19b682f0c0217fe21a25401b33b68e50522a41ece04f22d382a4

    • SHA512

      fdcf6311461709327038f241de1decad1e11c4b3d027f805cb76a009ebb76ae000aff4a2a420c6f0e6204eab0285f01467fd5bde712f65df08d70e3f969a2893

    • SSDEEP

      12288:fICCWmBGxoof2s8UcMd7vo0pwXlBZTnnWNQ6R3Z4UfiQd8eiKWXLfOJg6rWhY5xi:QCCWmBKpfA7T0KXlnnAxB595ij7fn6iP

    Score
    10/10
    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks