darkcomet | 9e935dba6dec980053c90422530642569ccaa415ae3a58b931eaab2a37321ee1 | Triage

Sharing

General

Target

c0373a2f807824e49989be1239c85707_JaffaCakes118
Size

743KB
Sample

241204-b3h9bsvna1
MD5

c0373a2f807824e49989be1239c85707
SHA1

7f0194051f4cbc8e4002c0ac90d7c56a66c6ce3b
SHA256

9e935dba6dec980053c90422530642569ccaa415ae3a58b931eaab2a37321ee1
SHA512

05d747557261f2114360b41138d723eafc363cf751d1f175f2866e344317563d9d067e4c6d28031283143aa00da9c62f0c3deb607eb62d6af5d1f706d71987b2
SSDEEP

12288:c8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORixznk:NUKoN0bUxgGa/pfBHDb+y1HgZFk

Score

10^/10

darkcomet discovery rat trojan

Malware Config

Targets

- Target
  
  c0373a2f807824e49989be1239c85707_JaffaCakes118
- Size
  
  743KB
- MD5
  
  c0373a2f807824e49989be1239c85707
- SHA1
  
  7f0194051f4cbc8e4002c0ac90d7c56a66c6ce3b
- SHA256
  
  9e935dba6dec980053c90422530642569ccaa415ae3a58b931eaab2a37321ee1
- SHA512
  
  05d747557261f2114360b41138d723eafc363cf751d1f175f2866e344317563d9d067e4c6d28031283143aa00da9c62f0c3deb607eb62d6af5d1f706d71987b2
- SSDEEP
  
  12288:c8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORixznk:NUKoN0bUxgGa/pfBHDb+y1HgZFk
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

behavioral2

darkcometdiscoveryrattrojan