General

  • Target

    c5046c8c5460252d9ed0692b34c7c1d7_JaffaCakes118

  • Size

    646KB

  • Sample

    241205-apajlavkap

  • MD5

    c5046c8c5460252d9ed0692b34c7c1d7

  • SHA1

    05012419725b5992e34ae9b67038b7883b06a766

  • SHA256

    765f310c61f89b600bbbbc44c3ea55a23784496dd4f185d77901324ef0a0c4cf

  • SHA512

    3674efc278a28ff5924357bb98243e4ee3fc9b0ca3036bedf0cfa71c9d2c5d8e4c359128fc777bc7fa029143dffa4cad43a412bd55323ef8879d7ceaff5108c5

  • SSDEEP

    12288:w8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORixv:pUKoN0bUxgGa/pfBHDb+y1HgZt

Malware Config

Targets

    • Target

      c5046c8c5460252d9ed0692b34c7c1d7_JaffaCakes118

    • Size

      646KB

    • MD5

      c5046c8c5460252d9ed0692b34c7c1d7

    • SHA1

      05012419725b5992e34ae9b67038b7883b06a766

    • SHA256

      765f310c61f89b600bbbbc44c3ea55a23784496dd4f185d77901324ef0a0c4cf

    • SHA512

      3674efc278a28ff5924357bb98243e4ee3fc9b0ca3036bedf0cfa71c9d2c5d8e4c359128fc777bc7fa029143dffa4cad43a412bd55323ef8879d7ceaff5108c5

    • SSDEEP

      12288:w8UaT9XY2siA0bMG09xD7I3Gg8ecgVvfBoCDBOQQYbVXpuy1f/gORixv:pUKoN0bUxgGa/pfBHDb+y1HgZt

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Darkcomet family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks