General

  • Target

    JaffaCakes118_5356bbfc8173fbca9e1717bbf6f3dc4a

  • Size

    713KB

  • Sample

    250305-yaa4ksxmx4

  • MD5

    5356bbfc8173fbca9e1717bbf6f3dc4a

  • SHA1

    86bae09acdf9f06653404b310f94c4183102b1e7

  • SHA256

    5fa0815bbce7c1cd3f5b3f06a861b520e01c32fedff9596a3f1f81aa469f3830

  • SHA512

    ba9c26fbc6f80777d32cd5422bac18e1576e4dbe10a77b3671a3abaad61465b8e8d1c53abad654b8311720a952ea21e3c0c141662e0bbc17f7cadae4c00e95d8

  • SSDEEP

    12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev0IhlULsmWZ++09ZcKDks/deX:zAEENIq8XwyVPQclqq/+WnIsFeX

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

127.0.0.1:1604

Mutex

DC_MUTEX-F54S21D

Attributes
  • gencode

    x=fahU9Bsc05

  • install

    false

  • offline_keylogger

    false

  • persistence

    false

rc4.plain

Targets

    • Target

      JaffaCakes118_5356bbfc8173fbca9e1717bbf6f3dc4a

    • Size

      713KB

    • MD5

      5356bbfc8173fbca9e1717bbf6f3dc4a

    • SHA1

      86bae09acdf9f06653404b310f94c4183102b1e7

    • SHA256

      5fa0815bbce7c1cd3f5b3f06a861b520e01c32fedff9596a3f1f81aa469f3830

    • SHA512

      ba9c26fbc6f80777d32cd5422bac18e1576e4dbe10a77b3671a3abaad61465b8e8d1c53abad654b8311720a952ea21e3c0c141662e0bbc17f7cadae4c00e95d8

    • SSDEEP

      12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev0IhlULsmWZ++09ZcKDks/deX:zAEENIq8XwyVPQclqq/+WnIsFeX

MITRE ATT&CK Enterprise v15

Tasks