Extracted

• • Target

    JaffaCakes118_f0b8852c0b559264764e4b682e1c1117

  • Size

    448KB

  • MD5

    f0b8852c0b559264764e4b682e1c1117

  • SHA1

    13182e5f1c700f246d452d702a6b3d49417fbf53

  • SHA256

    16181fddc28a16679199e91d57fec4ee7ecf2a8ab478783667960c69c446d410

  • SHA512

    7afc8b2509e61a623b4369e4b4d7c683945b3537bf661ac1480297e5147d445d7daee7200b9b0dadaa5cb766335c680bb3f2989d1b8edf9e6a3a8742571d4ca6

  • SSDEEP

    12288:NP4KfCRm47i/2Yku5upF1R36NaQ4ppnJN9IJaeh:VGHYkuspPRUQmJaO

  Score

  10^/10

  darkcometguest16discoveryrattrojanupx

  • Darkcomet

    DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    trojanratdarkcomet

  • Darkcomet family

    darkcomet

  • Suspicious use of SetThreadContext

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2