darkcomet | 39de26a7e53476fc2dd0d4f8df6e1f986b4788c8aafa6b484207eaf99fbdaa9b | Triage

Sharing

General

Target

JaffaCakes118_b1b90b344ee45e9c2feb3595ad50c25d
Size

1.0MB
Sample

250207-ce349swmgk
MD5

b1b90b344ee45e9c2feb3595ad50c25d
SHA1

09a663a5953f8232dd8c1655f146670f43128038
SHA256

39de26a7e53476fc2dd0d4f8df6e1f986b4788c8aafa6b484207eaf99fbdaa9b
SHA512

e4987e9428525390672fd6a5879cad62cc0839d3e89e940d89bc520393b71fb95d4336b504709a1433ae4485d2bcfff7bb72f98750aee5c4bd8c4630cced5304
SSDEEP

24576:6GoIjIbgyLC495467J21roDz26c9n9oHDS:6a8bdLp54lmPp7+

Score

10^/10

darkcomet discovery rat trojan

Malware Config

Targets

- Target
  
  JaffaCakes118_b1b90b344ee45e9c2feb3595ad50c25d
- Size
  
  1.0MB
- MD5
  
  b1b90b344ee45e9c2feb3595ad50c25d
- SHA1
  
  09a663a5953f8232dd8c1655f146670f43128038
- SHA256
  
  39de26a7e53476fc2dd0d4f8df6e1f986b4788c8aafa6b484207eaf99fbdaa9b
- SHA512
  
  e4987e9428525390672fd6a5879cad62cc0839d3e89e940d89bc520393b71fb95d4336b504709a1433ae4485d2bcfff7bb72f98750aee5c4bd8c4630cced5304
- SSDEEP
  
  24576:6GoIjIbgyLC495467J21roDz26c9n9oHDS:6a8bdLp54lmPp7+
Score

10^/10

darkcomet discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometdiscoveryrattrojan

behavioral2

darkcometdiscoveryrattrojan