Overview

overview

10

Static

static

10

JaffaCakes...50.exe

windows7-x64

10

JaffaCakes...50.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_63021d15bf38c86fcae34094cbb10f50

  • Size

    713KB

  • Sample

    250102-gemjqsymhr

  • MD5

    63021d15bf38c86fcae34094cbb10f50

  • SHA1

    685258037fe242863a9e7138a6858124a14399a1

  • SHA256

    469103bfa6d7745d2225d5416bf1f48a287340cf667e01bd11bb0e8e90112f67

  • SHA512

    23c51ae9128bb594a1a18417f19a7c46d4e95978e92da3eab3982a8aab4af42e16d61fd7c5225c5b4d47c3ea7ba40668839868af69bef1dd451e8e9300c50870

  • SSDEEP

    12288:OaAchpWsuVTv7ItY8XljyypHP7cOLBev03hlULsmWZ++09ZcKDVsgdB:PAEENIq8XwyVPQclDq/+WnpsSB

Score
10/10
darkcometdiscoveryrattrojan

Malware Config

Targets

    • Target

      JaffaCakes118_63021d15bf38c86fcae34094cbb10f50

    • Size

      713KB

    • MD5

      63021d15bf38c86fcae34094cbb10f50

    • SHA1

      685258037fe242863a9e7138a6858124a14399a1

    • SHA256

      469103bfa6d7745d2225d5416bf1f48a287340cf667e01bd11bb0e8e90112f67

    • SHA512

      23c51ae9128bb594a1a18417f19a7c46d4e95978e92da3eab3982a8aab4af42e16d61fd7c5225c5b4d47c3ea7ba40668839868af69bef1dd451e8e9300c50870

    • SSDEEP

      12288:OaAchpWsuVTv7ItY8XljyypHP7cOLBev03hlULsmWZ++09ZcKDVsgdB:PAEENIq8XwyVPQclDq/+WnpsSB

    Score
    10/10
    darkcometdiscoveryrattrojan

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

      trojanratdarkcomet

    • Darkcomet family

      darkcomet

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks