darkcomet | a4eb3497ccd9a05cab7e873aea250a42b08417a1fb36c67a328522e942bb891f | Triage

Sharing

General

Target

JaffaCakes118_77294eb7a62dfd4c6be182568d236450
Size

674KB
Sample

250104-c9vrdaxlfz
MD5

77294eb7a62dfd4c6be182568d236450
SHA1

dcb97fd6e023ca5c3d699a2d48445287987e2ad2
SHA256

a4eb3497ccd9a05cab7e873aea250a42b08417a1fb36c67a328522e942bb891f
SHA512

1e3463494ac32ad7dbc74db57d19655475e6e7562ec165f3f92c7cb7e3739099fed622237b4075041f1c6d765020c877dc667a0cdf30bad787c7f4640cb7c399
SSDEEP

12288:r9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9EkNC/T:lZ1xuVVjfFoynPaVBUR8f+kN10EdT

Score

10^/10

darkcomet guest16

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

83.185.214.129:1604

Mutex

DC_MUTEX-590HR2C

Attributes

gencode
fKwA8uwLCPhr
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  JaffaCakes118_77294eb7a62dfd4c6be182568d236450
- Size
  
  674KB
- MD5
  
  77294eb7a62dfd4c6be182568d236450
- SHA1
  
  dcb97fd6e023ca5c3d699a2d48445287987e2ad2
- SHA256
  
  a4eb3497ccd9a05cab7e873aea250a42b08417a1fb36c67a328522e942bb891f
- SHA512
  
  1e3463494ac32ad7dbc74db57d19655475e6e7562ec165f3f92c7cb7e3739099fed622237b4075041f1c6d765020c877dc667a0cdf30bad787c7f4640cb7c399
- SSDEEP
  
  12288:r9HFJ9rJxRX1uVVjoaWSoynxdO1FVBaOiRZTERfIhNkNCCLo9EkNC/T:lZ1xuVVjfFoynPaVBUR8f+kN10EdT
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

guest16darkcomet

behavioral1

behavioral2