General

  • Target

    JaffaCakes118_46151684b6e5ad8c350f3ac4d5c74218

  • Size

    713KB

  • Sample

    250303-kv5xsstl15

  • MD5

    46151684b6e5ad8c350f3ac4d5c74218

  • SHA1

    9c25883c30ad06a28f02dfbc216bea70aa976e6f

  • SHA256

    32932d263742ea592ddbb00b39927bf778b4cc4afde2b37c37cfa5d5b7e19b29

  • SHA512

    b0fe446a135907a85b714b3777365f9e32e5935f47cac38c697e1c4f4b498f1b54593c03bd7efaa72bbde8d189178ace6b331c99fdf517d87ece46a72e77427a

  • SSDEEP

    12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev0IhlULsmWZ++09ZcKDkszdeX:zAEENIq8XwyVPQclqq/+WnIsReX

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

127.0.0.1:1604

Mutex

DC_MUTEX-F54S21D

Attributes
  • gencode

    x=fahU9Bsc05

  • install

    false

  • offline_keylogger

    false

  • persistence

    false

rc4.plain

Targets

    • Target

      JaffaCakes118_46151684b6e5ad8c350f3ac4d5c74218

    • Size

      713KB

    • MD5

      46151684b6e5ad8c350f3ac4d5c74218

    • SHA1

      9c25883c30ad06a28f02dfbc216bea70aa976e6f

    • SHA256

      32932d263742ea592ddbb00b39927bf778b4cc4afde2b37c37cfa5d5b7e19b29

    • SHA512

      b0fe446a135907a85b714b3777365f9e32e5935f47cac38c697e1c4f4b498f1b54593c03bd7efaa72bbde8d189178ace6b331c99fdf517d87ece46a72e77427a

    • SSDEEP

      12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev0IhlULsmWZ++09ZcKDkszdeX:zAEENIq8XwyVPQclqq/+WnIsReX

MITRE ATT&CK Enterprise v15

Tasks