darkcomet | b26848a12485ba81c09935b0736c7faadfb3a9c3ebf41a8c373dc4cbca081afb | Triage

Sharing

General

Target

JaffaCakes118_1024fc339ba65a7ecb75489358a2bc37
Size

379KB
Sample

250122-xct4sszkfz
MD5

1024fc339ba65a7ecb75489358a2bc37
SHA1

b7cd42eac4c9b59a0bb89fb5c8c3e0f92307e500
SHA256

b26848a12485ba81c09935b0736c7faadfb3a9c3ebf41a8c373dc4cbca081afb
SHA512

c256f4a7aed4767db8beaa657d19e4e4158d74dfa1641cef7fbbfc65cb0c3d8156b0cee7532cbe4799bbced4623632ecd0e2db46fa0065a95dd5a13042206be2
SSDEEP

6144:mzR6oIjuCJYhfhzqTHgv7DxFEOMGdkpkAWiBeTDeI6b2BFwkUH1AgwtA90R1nJrE:ml6aCJYXqTA/3dVavowBV9J8uJvHsLWj

Score

10^/10

darkcomet discovery rat trojan

Malware Config

Targets

- Target
  
  JaffaCakes118_1024fc339ba65a7ecb75489358a2bc37
- Size
  
  379KB
- MD5
  
  1024fc339ba65a7ecb75489358a2bc37
- SHA1
  
  b7cd42eac4c9b59a0bb89fb5c8c3e0f92307e500
- SHA256
  
  b26848a12485ba81c09935b0736c7faadfb3a9c3ebf41a8c373dc4cbca081afb
- SHA512
  
  c256f4a7aed4767db8beaa657d19e4e4158d74dfa1641cef7fbbfc65cb0c3d8156b0cee7532cbe4799bbced4623632ecd0e2db46fa0065a95dd5a13042206be2
- SSDEEP
  
  6144:mzR6oIjuCJYhfhzqTHgv7DxFEOMGdkpkAWiBeTDeI6b2BFwkUH1AgwtA90R1nJrE:ml6aCJYXqTA/3dVavowBV9J8uJvHsLWj
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

behavioral2

darkcometdiscoveryrattrojan