darkcomet | d0ed6a262850849a4e3ef06edac6b619393adfead9bcc22a31cedd3b81eaec3d | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...13.exe

windows7-x64

JaffaCakes...13.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_629da83c18ecf6fc5b6128df463aae13
Size

666KB
Sample

250102-exkfzssqgt
MD5

629da83c18ecf6fc5b6128df463aae13
SHA1

6c8919ae894da9933909dd59503bd951b86d8029
SHA256

d0ed6a262850849a4e3ef06edac6b619393adfead9bcc22a31cedd3b81eaec3d
SHA512

0dfcd0094e05b361ab87247b3ee79518ab09ca8df5a007333fed9e8bd75b480f4b30db065602761f8a214be2c24e1a56a121e3fa0a7f50ea8c2fd06d06633247
SSDEEP

12288:LpwABK90BOe/x+lPAYvxPQVjdscY2XjW1nlpTMMXG91uhKIXn/b:9wAcu9+lPzvxP+Bsn2XjWDRMQckkIXn

Score

10^/10

darkcomet discovery rat trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_629da83c18ecf6fc5b6128df463aae13.exe

Resource

win7-20240729-en

darkcomet discovery rat trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_629da83c18ecf6fc5b6128df463aae13.exe

Resource

win10v2004-20241007-en

darkcomet discovery rat trojan

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_629da83c18ecf6fc5b6128df463aae13
- Size
  
  666KB
- MD5
  
  629da83c18ecf6fc5b6128df463aae13
- SHA1
  
  6c8919ae894da9933909dd59503bd951b86d8029
- SHA256
  
  d0ed6a262850849a4e3ef06edac6b619393adfead9bcc22a31cedd3b81eaec3d
- SHA512
  
  0dfcd0094e05b361ab87247b3ee79518ab09ca8df5a007333fed9e8bd75b480f4b30db065602761f8a214be2c24e1a56a121e3fa0a7f50ea8c2fd06d06633247
- SSDEEP
  
  12288:LpwABK90BOe/x+lPAYvxPQVjdscY2XjW1nlpTMMXG91uhKIXn/b:9wAcu9+lPzvxP+Bsn2XjWDRMQckkIXn
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

behavioral2

darkcometdiscoveryrattrojan

© 2018-2025

Terms | Privacy