General
-
Target
f43beb9c71e44314c3f7b8ef3dc0cf59_JaffaCakes118
-
Size
660KB
-
Sample
240924-wwrmca1cnf
-
MD5
f43beb9c71e44314c3f7b8ef3dc0cf59
-
SHA1
c8072b17d88de2cd78a5e2d0ee598cd558b91a90
-
SHA256
8cd9e68d1b1df9709c2c5f6d991b428c81f0ad363a00be63fac1c8e193349ad8
-
SHA512
28e3e7c664e91e1a72c941399071090dde6c29a470e2afaf2bfecca42213a4c2143c2fd59afa26b68acf58350adece49533ffe9fc6f3005b2b6ef36c57cb6a47
-
SSDEEP
12288:QXhpvNWw276S/DuoeFcfbmiJ99VPhYR5MTSHvLenELrWv1lZw4JuMkMh/fy452U3:2nAw2WWeFcfbP9VPSPMTSPL/rWvzq4Jn
Malware Config
Extracted
darkcomet
Guest16_min
danchronic.no-ip.biz:1604
DCMIN_MUTEX-B4VGL58
-
gencode
njsT99UQDotX
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
f43beb9c71e44314c3f7b8ef3dc0cf59_JaffaCakes118
-
Size
660KB
-
MD5
f43beb9c71e44314c3f7b8ef3dc0cf59
-
SHA1
c8072b17d88de2cd78a5e2d0ee598cd558b91a90
-
SHA256
8cd9e68d1b1df9709c2c5f6d991b428c81f0ad363a00be63fac1c8e193349ad8
-
SHA512
28e3e7c664e91e1a72c941399071090dde6c29a470e2afaf2bfecca42213a4c2143c2fd59afa26b68acf58350adece49533ffe9fc6f3005b2b6ef36c57cb6a47
-
SSDEEP
12288:QXhpvNWw276S/DuoeFcfbmiJ99VPhYR5MTSHvLenELrWv1lZw4JuMkMh/fy452U3:2nAw2WWeFcfbP9VPSPMTSPL/rWvzq4Jn
Score10/10-
Darkcomet
DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
-