darkcomet | c8bda58f616aad25b97156d4b4053fd8e246c7d841ad8098d336ed38a2ec0df2 | Triage

Sharing

General

Target

JaffaCakes118_6439532adf1088fad7fa56755be09bd0
Size

722KB
Sample

250102-ltevnayrbk
MD5

6439532adf1088fad7fa56755be09bd0
SHA1

e4e1d953b69bf12ae9dcda4154ee9b5c3fb319d3
SHA256

c8bda58f616aad25b97156d4b4053fd8e246c7d841ad8098d336ed38a2ec0df2
SHA512

7057a85aaa77ca4da326ed19f5220bc3b2863be97aa66e2c14ca251957a2d331310624e35465972c83ceac9cbcd5f5da36193a97742463c40fe22cc78e2f2a4c
SSDEEP

12288:gFLlJnnbWOtz6sVJhvaz1Qc/WdI//vfM4qwrbkniafLo6vUTyl0w/q9jJc:Q3nbWmJVJFwSddIXvfhqbiaxvRxq9y

Score

10^/10

darkcomet discovery rat trojan

Malware Config

Targets

- Target
  
  JaffaCakes118_6439532adf1088fad7fa56755be09bd0
- Size
  
  722KB
- MD5
  
  6439532adf1088fad7fa56755be09bd0
- SHA1
  
  e4e1d953b69bf12ae9dcda4154ee9b5c3fb319d3
- SHA256
  
  c8bda58f616aad25b97156d4b4053fd8e246c7d841ad8098d336ed38a2ec0df2
- SHA512
  
  7057a85aaa77ca4da326ed19f5220bc3b2863be97aa66e2c14ca251957a2d331310624e35465972c83ceac9cbcd5f5da36193a97742463c40fe22cc78e2f2a4c
- SSDEEP
  
  12288:gFLlJnnbWOtz6sVJhvaz1Qc/WdI//vfM4qwrbkniafLo6vUTyl0w/q9jJc:Q3nbWmJVJFwSddIXvfhqbiaxvRxq9y
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

behavioral2

darkcometdiscoveryrattrojan