darkcomet | 48d64591c9481e6e87577da9e881af0161e61eb7bf9234e57847fa8bc4d7a342 | Triage

Sharing

General

Target

JaffaCakes118_b4f4d47504d8e7e1978eb0e9d06c4ada
Size

924KB
Sample

250207-j7261awpaj
MD5

b4f4d47504d8e7e1978eb0e9d06c4ada
SHA1

501b10f34f18001500e9a5a568530bafd60f2c8c
SHA256

48d64591c9481e6e87577da9e881af0161e61eb7bf9234e57847fa8bc4d7a342
SHA512

4ca85bbb859e33f3bef0c1232f0446a6867577d5a41a33ad615e7062f8ca86794aab1db0371b00f1a6c40a044c95507827c38726212985d95ca49e94621b72f9
SSDEEP

12288:TuHvywQYCYAvfwnnbr0veZIFIKtRpT9kMFtTOPFiMVwqclBrkRGfhziDJW+H6Aqp:svyBdObTCgmywMViy8EJCAq1t8MaZYv

Score

10^/10

darkcomet bought discovery rat trojan

Malware Config

Extracted

Family

darkcomet

Botnet

Bought

C2

dcv15.no-ip.org:20222

Mutex

DC_MUTEX-HX4UN9V

Attributes

gencode
J6vePK8rkRWd
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  JaffaCakes118_b4f4d47504d8e7e1978eb0e9d06c4ada
- Size
  
  924KB
- MD5
  
  b4f4d47504d8e7e1978eb0e9d06c4ada
- SHA1
  
  501b10f34f18001500e9a5a568530bafd60f2c8c
- SHA256
  
  48d64591c9481e6e87577da9e881af0161e61eb7bf9234e57847fa8bc4d7a342
- SHA512
  
  4ca85bbb859e33f3bef0c1232f0446a6867577d5a41a33ad615e7062f8ca86794aab1db0371b00f1a6c40a044c95507827c38726212985d95ca49e94621b72f9
- SSDEEP
  
  12288:TuHvywQYCYAvfwnnbr0veZIFIKtRpT9kMFtTOPFiMVwqclBrkRGfhziDJW+H6Aqp:svyBdObTCgmywMViy8EJCAq1t8MaZYv
Score

10^/10

darkcomet bought discovery rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Darkcomet family
  darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

darkcometboughtdiscoveryrattrojan

behavioral2