General

  • Target

    cc0a8af0f8b78a13e4d51c41ce50fe33_JaffaCakes118

  • Size

    4.5MB

  • Sample

    241206-kh7kvsynev

  • MD5

    cc0a8af0f8b78a13e4d51c41ce50fe33

  • SHA1

    2938cb88765e4fe332e9baf604cdc36aed29ebae

  • SHA256

    60953491af5344f7c37125d4c17f193f8a9ef69aace62f7a252d06d097d3d187

  • SHA512

    f7f67d83ece9593990d0c5db274961c9dce828470b397c04bbf6fe3cb1c921f3a52b10a4484102afd3b9ffc5b375e3619f6f3cf529829184dd7ef40f432eaa5f

  • SSDEEP

    98304:to9psU8jn/UwrbOBksSyqOu5foWTiLawvgPVA0UlZmj6Ti:cl8rUqKks5qhhFTiLJYNXUD8p

Malware Config

Targets

    • Target

      cc0a8af0f8b78a13e4d51c41ce50fe33_JaffaCakes118

    • Size

      4.5MB

    • MD5

      cc0a8af0f8b78a13e4d51c41ce50fe33

    • SHA1

      2938cb88765e4fe332e9baf604cdc36aed29ebae

    • SHA256

      60953491af5344f7c37125d4c17f193f8a9ef69aace62f7a252d06d097d3d187

    • SHA512

      f7f67d83ece9593990d0c5db274961c9dce828470b397c04bbf6fe3cb1c921f3a52b10a4484102afd3b9ffc5b375e3619f6f3cf529829184dd7ef40f432eaa5f

    • SSDEEP

      98304:to9psU8jn/UwrbOBksSyqOu5foWTiLawvgPVA0UlZmj6Ti:cl8rUqKks5qhhFTiLJYNXUD8p

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Darkcomet family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks