darkcomet | b2abfd9475a6e67a193a6b53b0591ad6_JaffaCakes118 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b2abfd9475a6e67a193a6b53b0591ad6_JaffaCakes118
Size

1.0MB
MD5

b2abfd9475a6e67a193a6b53b0591ad6
SHA1

be4843eb5c37e17e42e00245ee9ef75d736e499a
SHA256

829a9469f76402cddb3d13af8c2d4650e9eb1b47f21b9092a38da082b32a2f15
SHA512

3fb33cdf1e08c0ad5656231b684681244e5bd2a941ae4a43ccaecfdd3c444e9bfb0861f4b4e66dbb581d0794e3c5bb9db7c0d4c91373b6ec63bec7acf3864894
SSDEEP

12288:opwAd6K9IBYe/x9lPAYvxPQtMdsAY2XjWlnl1WMyXG91OhKI82:ywAfij9lPzvxPuSsz2XjWT8Mac0kI8

Score

10^/10

darkcomet

Malware Config

Signatures

Darkcomet family
darkcomet

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2abfd9475a6e67a193a6b53b0591ad6_JaffaCakes118

Files

b2abfd9475a6e67a193a6b53b0591ad6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_BYTES_REVERSED_HI

Sections

.MPRESS1
Size: 932KB - Virtual size: 932KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE