darkcomet | 1e4817ede6eb8a8d04823bc112006b45bd96d5009a3140dda17b919ac2637611 | Triage

Sharing

General

Target

JaffaCakes118_b1313bcd7f538c7266b505785e5ee585
Size

1.1MB
Sample

250118-w3s4ra1php
MD5

b1313bcd7f538c7266b505785e5ee585
SHA1

3d338b87d95d5cf0ddc8de696ebf5e9ae98f0b09
SHA256

1e4817ede6eb8a8d04823bc112006b45bd96d5009a3140dda17b919ac2637611
SHA512

5cd8de4265d73b13bf6bf2e586bd9b70c5b2dec995fede733fd063d4506169d563cbff8c2ea737195e9b1c067fc36720a922f96e91023c51ec025deda4bc125b
SSDEEP

24576:K9SKDV4/wczy2MXQQSGuwNCXyUKq2q5fvEJoA0A8CFfa8Xc8hnzvTBD:eDMYUGuriMvchPBD

Score

10^/10

darkcomet rat trojan

Malware Config

Targets

- Target
  
  JaffaCakes118_b1313bcd7f538c7266b505785e5ee585
- Size
  
  1.1MB
- MD5
  
  b1313bcd7f538c7266b505785e5ee585
- SHA1
  
  3d338b87d95d5cf0ddc8de696ebf5e9ae98f0b09
- SHA256
  
  1e4817ede6eb8a8d04823bc112006b45bd96d5009a3140dda17b919ac2637611
- SHA512
  
  5cd8de4265d73b13bf6bf2e586bd9b70c5b2dec995fede733fd063d4506169d563cbff8c2ea737195e9b1c067fc36720a922f96e91023c51ec025deda4bc125b
- SSDEEP
  
  24576:K9SKDV4/wczy2MXQQSGuwNCXyUKq2q5fvEJoA0A8CFfa8Xc8hnzvTBD:eDMYUGuriMvchPBD
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan