General

  • Target

    f4428b1f4fa7d06d5664fda05a0ff962_JaffaCakes118

  • Size

    658KB

  • Sample

    241215-qy9m2sxncp

  • MD5

    f4428b1f4fa7d06d5664fda05a0ff962

  • SHA1

    dd87470d6056d0b29cbb047532a1c480ed6fa43d

  • SHA256

    a1463c32a24e755a21255f48d96149c9fe3bf202c37355bedf0fd733235cbcbc

  • SHA512

    3c4e96edfd690e1e2b3e1e206e440f6f5b85b1305fb38806619848ccdb2821e0e37e79c8bb01f8193bf78d6252fd99c983c3eaf1c09e6843a8ab5a25d13f3372

  • SSDEEP

    12288:J9AFlAd0Z+89cxTGzO4AucTD8QP2lmFSrVs9LqnKj0:vAQ6Zx9cxTmOrucTIEFSpOGG0

Malware Config

Targets

    • Target

      f4428b1f4fa7d06d5664fda05a0ff962_JaffaCakes118

    • Size

      658KB

    • MD5

      f4428b1f4fa7d06d5664fda05a0ff962

    • SHA1

      dd87470d6056d0b29cbb047532a1c480ed6fa43d

    • SHA256

      a1463c32a24e755a21255f48d96149c9fe3bf202c37355bedf0fd733235cbcbc

    • SHA512

      3c4e96edfd690e1e2b3e1e206e440f6f5b85b1305fb38806619848ccdb2821e0e37e79c8bb01f8193bf78d6252fd99c983c3eaf1c09e6843a8ab5a25d13f3372

    • SSDEEP

      12288:J9AFlAd0Z+89cxTGzO4AucTD8QP2lmFSrVs9LqnKj0:vAQ6Zx9cxTmOrucTIEFSpOGG0

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Darkcomet family

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks