darkcomet | d51584c8d2211c68246a8fd98e7a1aa12c98f6a8c043356623e736517a1d0563 | Triage

Sharing

General

Target

c9612f5e4129b1f9ce4a546c6aa7718a_JaffaCakes118
Size

791KB
Sample

241205-zsys2a1qgw
MD5

c9612f5e4129b1f9ce4a546c6aa7718a
SHA1

37a51510ffdf6cbb9efced51976b010f117d91cb
SHA256

d51584c8d2211c68246a8fd98e7a1aa12c98f6a8c043356623e736517a1d0563
SHA512

715686dea87fd689657860767afc16df8abb72356d011e84c95b0116b476c7559e70be67386ed8063dd81edbd72f00adef6adb7f10f2c12bb4958b220a03c21e
SSDEEP

12288:B/RS5A5fQuPnL+Ou2Qb1W/iSq3WYiL7I+26sNZrIcn2INwMsUWeqGK4VDkFX9HzB:wtQK0gOivWYo7I+266IU1YedihFB

Score

10^/10

darkcomet discovery rat trojan

Malware Config

Targets

- Target
  
  c9612f5e4129b1f9ce4a546c6aa7718a_JaffaCakes118
- Size
  
  791KB
- MD5
  
  c9612f5e4129b1f9ce4a546c6aa7718a
- SHA1
  
  37a51510ffdf6cbb9efced51976b010f117d91cb
- SHA256
  
  d51584c8d2211c68246a8fd98e7a1aa12c98f6a8c043356623e736517a1d0563
- SHA512
  
  715686dea87fd689657860767afc16df8abb72356d011e84c95b0116b476c7559e70be67386ed8063dd81edbd72f00adef6adb7f10f2c12bb4958b220a03c21e
- SSDEEP
  
  12288:B/RS5A5fQuPnL+Ou2Qb1W/iSq3WYiL7I+26sNZrIcn2INwMsUWeqGK4VDkFX9HzB:wtQK0gOivWYo7I+266IU1YedihFB
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

behavioral2

darkcometdiscoveryrattrojan