Overview

overview

10

Static

static

3

44a2ca3cc3...18.exe

windows7-x64

10

44a2ca3cc3...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44a2ca3cc3806ad03fca85f74b08ee86_JaffaCakes118

  • Size

    302KB

  • Sample

    241014-2492jsvepj

  • MD5

    44a2ca3cc3806ad03fca85f74b08ee86

  • SHA1

    e59c8b8803a3a7d0e31f61396d131bd318aeb6dc

  • SHA256

    b0a90c7243acff8522270f2dae5b12c29fbdf3bc9f10a77baeda37467112e5d9

  • SHA512

    9f8ba77f72da1c5677cc6b852d0e37ac4aaf9e79c07d0cb54fbf0e76195b770ab4b704ce5a1370d51987319dba6deef9b0f4d192a5aa18081bd15a9a808657b0

  • SSDEEP

    6144:oxYEoifRVQnjTqrNoJFV+95HLxMz5sbgYb:oxYEzrQnjGrNoJI5dMFsb

Score
10/10
darkcometdiscoveryrattrojanupx

Malware Config

Targets

    • Target

      44a2ca3cc3806ad03fca85f74b08ee86_JaffaCakes118

    • Size

      302KB

    • MD5

      44a2ca3cc3806ad03fca85f74b08ee86

    • SHA1

      e59c8b8803a3a7d0e31f61396d131bd318aeb6dc

    • SHA256

      b0a90c7243acff8522270f2dae5b12c29fbdf3bc9f10a77baeda37467112e5d9

    • SHA512

      9f8ba77f72da1c5677cc6b852d0e37ac4aaf9e79c07d0cb54fbf0e76195b770ab4b704ce5a1370d51987319dba6deef9b0f4d192a5aa18081bd15a9a808657b0

    • SSDEEP

      6144:oxYEoifRVQnjTqrNoJFV+95HLxMz5sbgYb:oxYEzrQnjGrNoJI5dMFsb

    Score
    10/10
    darkcometdiscoveryrattrojanupx

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks