General

  • Target

    97a27a383ab6b15c93f2ef510bf25c43_JaffaCakes118

  • Size

    696KB

  • Sample

    240814-zp6z8syenl

  • MD5

    97a27a383ab6b15c93f2ef510bf25c43

  • SHA1

    8edcae5f5d5a7f3961dd42928d78b5187bec83da

  • SHA256

    cbb61e820ae13df931e046b3fd5d68ef16eea288a5664e661592261df9f42913

  • SHA512

    96bf67e58cb23deeeccf5a082cf3d4a8e87fe3c325339972410641f539e2784831b60fa008e02576c62155bbc7fd06e7aa38c1be7864d5d4cd32c8ddb72850c0

  • SSDEEP

    12288:5Zh6onR2doK5ZGaBnSM1oPZfnF390B9Cx9QcjEfWqkpuZCv:Dh6oR26K5QGSUoh9390BUQ1kUgv

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

shy1.no-ip.biz:871

Mutex

DC_MUTEX-5NPX5F6

Attributes
  • gencode

    ixiLgxBEB1XM

  • install

    false

  • offline_keylogger

    true

  • password

    aze123456

  • persistence

    false

Targets

    • Target

      97a27a383ab6b15c93f2ef510bf25c43_JaffaCakes118

    • Size

      696KB

    • MD5

      97a27a383ab6b15c93f2ef510bf25c43

    • SHA1

      8edcae5f5d5a7f3961dd42928d78b5187bec83da

    • SHA256

      cbb61e820ae13df931e046b3fd5d68ef16eea288a5664e661592261df9f42913

    • SHA512

      96bf67e58cb23deeeccf5a082cf3d4a8e87fe3c325339972410641f539e2784831b60fa008e02576c62155bbc7fd06e7aa38c1be7864d5d4cd32c8ddb72850c0

    • SSDEEP

      12288:5Zh6onR2doK5ZGaBnSM1oPZfnF390B9Cx9QcjEfWqkpuZCv:Dh6oR26K5QGSUoh9390BUQ1kUgv

MITRE ATT&CK Enterprise v15

Tasks