General

  • Target

    d3e9e1960de0246f4c83ead11e452bb9_JaffaCakes118

  • Size

    516KB

  • Sample

    241207-2dpb6axlcx

  • MD5

    d3e9e1960de0246f4c83ead11e452bb9

  • SHA1

    97baa05116d5b9b86246ce9d73355cb3dba60fbf

  • SHA256

    d2b5f7ee8ef60dc08d35501947e41a2c28a0e1a9a0acc8b06880b2a90238735b

  • SHA512

    2644944d4e7ea98924953909b63bc8281c3c73dda167e786ed95d253e4e0dd126cdb4afa854e3219f8ea329358b2e74781ed4a7c9016a10be07c65662f30545b

  • SSDEEP

    12288:NMuxLl1rkHbSuPpjrYIOdHTPbZY/Kwvky5S/:NMu9l1SbSyjrYnz9YCwvky5a

Malware Config

Targets

    • Target

      d3e9e1960de0246f4c83ead11e452bb9_JaffaCakes118

    • Size

      516KB

    • MD5

      d3e9e1960de0246f4c83ead11e452bb9

    • SHA1

      97baa05116d5b9b86246ce9d73355cb3dba60fbf

    • SHA256

      d2b5f7ee8ef60dc08d35501947e41a2c28a0e1a9a0acc8b06880b2a90238735b

    • SHA512

      2644944d4e7ea98924953909b63bc8281c3c73dda167e786ed95d253e4e0dd126cdb4afa854e3219f8ea329358b2e74781ed4a7c9016a10be07c65662f30545b

    • SSDEEP

      12288:NMuxLl1rkHbSuPpjrYIOdHTPbZY/Kwvky5S/:NMu9l1SbSyjrYnz9YCwvky5a

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Darkcomet family

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks