darkcomet | e09c449e4462df040cd7a10854c07384820e7362d90e668181924ff59dc5a40f | Triage

Submit
Reports

Overview

overview

Static

static

028079ff31...18.exe

windows7-x64

028079ff31...18.exe

windows10-2004-x64

Sharing

General

Target

028079ff31f825b0391f4afcfb7fd1f6_JaffaCakes118
Size

660KB
Sample

240622-rbbm6s1akd
MD5

028079ff31f825b0391f4afcfb7fd1f6
SHA1

f1cdf35f1117a2435973f5b13e9ed73deb3b0f3a
SHA256

e09c449e4462df040cd7a10854c07384820e7362d90e668181924ff59dc5a40f
SHA512

2fac67876893df3fb27e310c97d5c44239047b03616d275fbb9321d8759a9d9c67df39854d2c32b9a26363cdb277ddcc15d9217ae04014f27548516868874bdc
SSDEEP

12288:gXhpvNWw276S/DuoeFcfbmiJ99VPhYR5MTSHvLenELrWv1lZw4JuMkMh/fy452U0:mnAw2WWeFcfbP9VPSPMTSPL/rWvzq4JE

Score

10^/10

darkcomet guest16 rat trojan

Static task

static1

guest16 darkcomet

2 signatures

Behavioral task

behavioral1

Sample

028079ff31f825b0391f4afcfb7fd1f6_JaffaCakes118.exe

Resource

win7-20240221-en

darkcomet guest16 rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

028079ff31f825b0391f4afcfb7fd1f6_JaffaCakes118.exe

Resource

win10v2004-20240508-en

darkcomet guest16 rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

127.0.0.1:1604

Mutex

DC_MUTEX-DFW2MBP

Attributes

gencode
2WS9oedMaK67
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  028079ff31f825b0391f4afcfb7fd1f6_JaffaCakes118
- Size
  
  660KB
- MD5
  
  028079ff31f825b0391f4afcfb7fd1f6
- SHA1
  
  f1cdf35f1117a2435973f5b13e9ed73deb3b0f3a
- SHA256
  
  e09c449e4462df040cd7a10854c07384820e7362d90e668181924ff59dc5a40f
- SHA512
  
  2fac67876893df3fb27e310c97d5c44239047b03616d275fbb9321d8759a9d9c67df39854d2c32b9a26363cdb277ddcc15d9217ae04014f27548516868874bdc
- SSDEEP
  
  12288:gXhpvNWw276S/DuoeFcfbmiJ99VPhYR5MTSHvLenELrWv1lZw4JuMkMh/fy452U0:mnAw2WWeFcfbP9VPSPMTSPL/rWvzq4JE
Score

10^/10

darkcomet guest16 rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

guest16darkcomet

behavioral1

darkcometguest16rattrojan

behavioral2

darkcometguest16rattrojan

© 2018-2024

Terms | Privacy