General

  • Target

    6224f0fd40a3b3b2e15c77af1db2d2c7_JaffaCakes118

  • Size

    716KB

  • Sample

    240722-bbhtgswdnr

  • MD5

    6224f0fd40a3b3b2e15c77af1db2d2c7

  • SHA1

    5dadbb4e0922cfe2eeaaf59290dab3865378685e

  • SHA256

    bf68720b681b9dcb2a7cec416160edf38dfa07b66ceb709b283612335a9ed026

  • SHA512

    9d357dbf5ae6315eb80cbf86007c0cfccbb51339bddcadffd89682a5d638bff838671dfa0b0409fbdc7584b166904bafb4027d924e24508a0b441a35f96f85f5

  • SSDEEP

    12288:t8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1r/R:+UKoN0bUxgGa/pfBHDb+y1LR

Score
10/10

Malware Config

Targets

    • Target

      6224f0fd40a3b3b2e15c77af1db2d2c7_JaffaCakes118

    • Size

      716KB

    • MD5

      6224f0fd40a3b3b2e15c77af1db2d2c7

    • SHA1

      5dadbb4e0922cfe2eeaaf59290dab3865378685e

    • SHA256

      bf68720b681b9dcb2a7cec416160edf38dfa07b66ceb709b283612335a9ed026

    • SHA512

      9d357dbf5ae6315eb80cbf86007c0cfccbb51339bddcadffd89682a5d638bff838671dfa0b0409fbdc7584b166904bafb4027d924e24508a0b441a35f96f85f5

    • SSDEEP

      12288:t8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1r/R:+UKoN0bUxgGa/pfBHDb+y1LR

    Score
    10/10
    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks