General
-
Target
e1871e20597cb410fc5c1a69c2c7696d_JaffaCakes118
-
Size
756KB
-
Sample
241211-pzsv9asrft
-
MD5
e1871e20597cb410fc5c1a69c2c7696d
-
SHA1
c1836fb83ce25d012512b9cd7a27a8b547615bf9
-
SHA256
d292fb1ef0ab076ba12baa178d53d7a24ea425b33990dfa84e8a0d4eb93700a0
-
SHA512
9f766fd2e504929f482b0256d9b8f3c42317256ae3f96f503c73b2b918777d89301e41511529a02b35df8ba2da89cbabfbea96b5c96bbaaf9230942debeb5456
-
SSDEEP
12288:j9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hEd:tZ1xuVVjfFoynPaVBUR8f+kN10EBad
Malware Config
Extracted
darkcomet
Guest16
mcbukkit.no-ip.org:1605
DC_MUTEX-VHNFL95
-
gencode
SocG6g4AvjZW
-
install
false
-
offline_keylogger
true
-
persistence
false
Targets
-
-
Target
e1871e20597cb410fc5c1a69c2c7696d_JaffaCakes118
-
Size
756KB
-
MD5
e1871e20597cb410fc5c1a69c2c7696d
-
SHA1
c1836fb83ce25d012512b9cd7a27a8b547615bf9
-
SHA256
d292fb1ef0ab076ba12baa178d53d7a24ea425b33990dfa84e8a0d4eb93700a0
-
SHA512
9f766fd2e504929f482b0256d9b8f3c42317256ae3f96f503c73b2b918777d89301e41511529a02b35df8ba2da89cbabfbea96b5c96bbaaf9230942debeb5456
-
SSDEEP
12288:j9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9Ek5C/hEd:tZ1xuVVjfFoynPaVBUR8f+kN10EBad
Score10/10-
Darkcomet
DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
-
Darkcomet family
-