Extracted

• • Target

    JaffaCakes118_7560807ad700a17d6155060abc04e83e

  • Size

    756KB

  • MD5

    7560807ad700a17d6155060abc04e83e

  • SHA1

    3ca839d4066a76d8eb1545ba002ba4ecb20e1f0b

  • SHA256

    c206393607fb54c1691fb66c57af0741c48db0f804ea267db709037967f996ad

  • SHA512

    b54cab2a80e8033c2bd7031f33265a405238c689ff973d17154d227fa4abf8005c4e4dcf953fd750c5313a611f7241e160cd8cb4124a0e8dd121c0bc1764da1d

  • SSDEEP

    12288:Q9AFlAd0Z+89cxTGzO4AucTD8QP2lmFSrVs9LqnK:WAQ6Zx9cxTmOrucTIEFSpOG

  Score

  10^/10

  darkcometguest16discoveryrattrojan

  • Darkcomet

    DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    trojanratdarkcomet

  • Darkcomet family

    darkcomet

  • Checks BIOS information in registry

    BIOS information is often read in order to detect sandboxing environments.

  • Suspicious use of SetThreadContext

  behavioral1behavioral2