darkcomet | 71fb3b2c304637f50ef8c19c0e924ca5439e6860921a967b3d89efc04f0b2d4b | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...a8.exe

windows10-ltsc 2021-x64

Resubmissions

06/02/2025, 22:20

250206-19acfaypez 10

06/02/2025, 21:54

250206-1sgp7ayjes 10

Sharing

General

Target

JaffaCakes118_afbb43b5c3423ac5da015f88581d55a8
Size

712KB
Sample

250206-19acfaypez
MD5

afbb43b5c3423ac5da015f88581d55a8
SHA1

46e43b61c1598aaa390c54bd2978b005da11809c
SHA256

71fb3b2c304637f50ef8c19c0e924ca5439e6860921a967b3d89efc04f0b2d4b
SHA512

65ad673f53ee1ea1ef881fa644e0ff90e3d337ab8e6d9205dcf831e3cfe51258a5ee0969c2ab6705e6d7533c57ba039923490fff32b4455cd40573a71e6765af
SSDEEP

12288:IaAchpWsuVtDnBsBDJIcynnC90levX4CuYf2D82T3s99+VHuNK1O:pAEE3uBDhynCylQgi63O9+VuNkO

Score

10^/10

darkcomet discovery rat trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_afbb43b5c3423ac5da015f88581d55a8.exe

Resource

win10ltsc2021-20250128-en

darkcomet discovery rat trojan

windows10-ltsc 2021-x64

17 signatures

300 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_afbb43b5c3423ac5da015f88581d55a8
- Size
  
  712KB
- MD5
  
  afbb43b5c3423ac5da015f88581d55a8
- SHA1
  
  46e43b61c1598aaa390c54bd2978b005da11809c
- SHA256
  
  71fb3b2c304637f50ef8c19c0e924ca5439e6860921a967b3d89efc04f0b2d4b
- SHA512
  
  65ad673f53ee1ea1ef881fa644e0ff90e3d337ab8e6d9205dcf831e3cfe51258a5ee0969c2ab6705e6d7533c57ba039923490fff32b4455cd40573a71e6765af
- SSDEEP
  
  12288:IaAchpWsuVtDnBsBDJIcynnC90levX4CuYf2D82T3s99+VHuNK1O:pAEE3uBDhynCylQgi63O9+VuNkO
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

© 2018-2025

Terms | Privacy