Extracted

• • Target

    JaffaCakes118_02a50122e33b4bb7002aca09720b717c

  • Size

    949KB

  • MD5

    02a50122e33b4bb7002aca09720b717c

  • SHA1

    5cfb259ad53efada21be358e256387b020dd896c

  • SHA256

    36b2cff46a7e32bfb35a0f61e66732e6a453cd139aa9904ff74cc4ac4771e6f4

  • SHA512

    07b6e0414680b4109c9a34b4c1c020c0c7f595952636bf475b71729248e418adc29b782eb8577620a041c817a95ab8ba227995544e729cec6f12e301d3f50c26

  • SSDEEP

    24576:CAik4BG3EsmVyhcVjebSzL0vrf1vAHxOnRc6PW:CAik4BPVyK+QQ7OHAR2

  Score

  10^/10

  darkcometdiscoveryrattrojan

  • Darkcomet

    DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    trojanratdarkcomet

  • Darkcomet family

    darkcomet

  • Checks BIOS information in registry

    BIOS information is often read in order to detect sandboxing environments.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2