Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_82feb2de3ecbc6774422224d96b49fd9
-
Size
713KB
-
Sample
250321-ndhygs1ks7
-
MD5
82feb2de3ecbc6774422224d96b49fd9
-
SHA1
b076f98d67f9d518e3be22657c9928cc71ef2358
-
SHA256
8a14264f4ddd8103286814d1c7d1b2a702f896eb1206c5ff4802e5f2ae60545c
-
SHA512
79ecdf3bbd108d4b0f26d00a56f1c3444289191a0191894e142c86182543c146ad3c2bce188b17267b158ba2eae0cebe4d3f9588c143fb083c853a557eee4de8
-
SSDEEP
12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev03hlULsmWZ++09ZcKDVsgdeX:zAEENIq8XwyVPQclDq/+WnpsSeX
Malware Config
Extracted
darkcomet
Guest16
127.0.0.1:1604
DC_MUTEX-F54S21D
-
gencode
/l48Cts?HJfT
-
install
false
-
offline_keylogger
false
-
persistence
false
Targets
-
-
Target
JaffaCakes118_82feb2de3ecbc6774422224d96b49fd9
-
Size
713KB
-
MD5
82feb2de3ecbc6774422224d96b49fd9
-
SHA1
b076f98d67f9d518e3be22657c9928cc71ef2358
-
SHA256
8a14264f4ddd8103286814d1c7d1b2a702f896eb1206c5ff4802e5f2ae60545c
-
SHA512
79ecdf3bbd108d4b0f26d00a56f1c3444289191a0191894e142c86182543c146ad3c2bce188b17267b158ba2eae0cebe4d3f9588c143fb083c853a557eee4de8
-
SSDEEP
12288:iaAchpWsuVTv7ItY8XljyypHP7cOLBev03hlULsmWZ++09ZcKDVsgdeX:zAEENIq8XwyVPQclDq/+WnpsSeX
Score10/10-
Darkcomet
DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
-
Darkcomet family
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-