General

  • Target

    JaffaCakes118_67487fcba24f39352821477dd0928a3b

  • Size

    695KB

  • Sample

    250102-w7erxstqbj

  • MD5

    67487fcba24f39352821477dd0928a3b

  • SHA1

    0b66d88fab7aef3455e7695d9b469537a309bba8

  • SHA256

    86762e0fd9c84a4c7d7f97a08de496a90cdd77df0122da1746883a2d3956b08d

  • SHA512

    61e0c41b01d9eb82f871921718493a1f51cd5ae81ae6b62f684a9a5630a5b3091dbb92f1c2719e967191a29ad407cccfcfc309580e1b496a8b5428a89f37d898

  • SSDEEP

    12288:3XAEwZ6ia5mWiOhGhpaZY+vQhZFaaolSXyOTrT6g3J7CDYhtEb:1nia48hGhpypvSFylSXyKT/IYsb

Malware Config

Targets

    • Target

      JaffaCakes118_67487fcba24f39352821477dd0928a3b

    • Size

      695KB

    • MD5

      67487fcba24f39352821477dd0928a3b

    • SHA1

      0b66d88fab7aef3455e7695d9b469537a309bba8

    • SHA256

      86762e0fd9c84a4c7d7f97a08de496a90cdd77df0122da1746883a2d3956b08d

    • SHA512

      61e0c41b01d9eb82f871921718493a1f51cd5ae81ae6b62f684a9a5630a5b3091dbb92f1c2719e967191a29ad407cccfcfc309580e1b496a8b5428a89f37d898

    • SSDEEP

      12288:3XAEwZ6ia5mWiOhGhpaZY+vQhZFaaolSXyOTrT6g3J7CDYhtEb:1nia48hGhpypvSFylSXyKT/IYsb

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • Darkcomet family

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks