General

  • Target

    1176be56341b5eb7d35289ad526d1baf_JaffaCakes118

  • Size

    677KB

  • Sample

    240626-k38zeszdmk

  • MD5

    1176be56341b5eb7d35289ad526d1baf

  • SHA1

    3686a9781004fe837ca3b620db6c260958918e24

  • SHA256

    b4e24aa3ea9cf9198937063489f8a8725e428f28ef6b2c66147a242f4f3c0265

  • SHA512

    9e3dc28f428f2434ab96f764a61cfd7ff6b946ba4db747d98a43ad71dde4f4a4fd38c2f184361c759464f426c8bb701aea667204fc7e3f50f0c249e84b9ab75e

  • SSDEEP

    12288:K8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORix4:/UKoN0bUxgGa/pfBHDb+y1HgZ

Score
10/10

Malware Config

Targets

    • Target

      1176be56341b5eb7d35289ad526d1baf_JaffaCakes118

    • Size

      677KB

    • MD5

      1176be56341b5eb7d35289ad526d1baf

    • SHA1

      3686a9781004fe837ca3b620db6c260958918e24

    • SHA256

      b4e24aa3ea9cf9198937063489f8a8725e428f28ef6b2c66147a242f4f3c0265

    • SHA512

      9e3dc28f428f2434ab96f764a61cfd7ff6b946ba4db747d98a43ad71dde4f4a4fd38c2f184361c759464f426c8bb701aea667204fc7e3f50f0c249e84b9ab75e

    • SSDEEP

      12288:K8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORix4:/UKoN0bUxgGa/pfBHDb+y1HgZ

    Score
    10/10
    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks