darkcomet | ba035e9967f9b4caf497b256674aa0c99c600bd6dae65f01ab247702be741efd | Triage

Submit
Reports

Overview

overview

Static

static

3

14a134210e...18.exe

windows7-x64

14a134210e...18.exe

windows10-2004-x64

Sharing

General

Target

14a134210ef95006548ae79b2105cd2b_JaffaCakes118
Size

1017KB
Sample

240627-erblws1gre
MD5

14a134210ef95006548ae79b2105cd2b
SHA1

12eff838d0dce31ebefc0833216549f8d31e97f5
SHA256

ba035e9967f9b4caf497b256674aa0c99c600bd6dae65f01ab247702be741efd
SHA512

885549a73689a08524127d9c7ccaa2cf8925f64abfa193b139a50686aec70f3ff8089f2334d55c8fc838661d976ad11000099ec850c4bf0fbfae1df4f684afbb
SSDEEP

24576:T4ZfRTO1SD2Y8kNHvIJvRxtD/DZ10ULPKpHCq9CX8/aGbReTbCq:gpq1SFNmvRxtDH0ULPKpHCq9B

Score

10^/10

darkcomet rat trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

14a134210ef95006548ae79b2105cd2b_JaffaCakes118.exe

Resource

win7-20240419-en

darkcomet rat trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

14a134210ef95006548ae79b2105cd2b_JaffaCakes118.exe

Resource

win10v2004-20240508-en

darkcomet rat trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  14a134210ef95006548ae79b2105cd2b_JaffaCakes118
- Size
  
  1017KB
- MD5
  
  14a134210ef95006548ae79b2105cd2b
- SHA1
  
  12eff838d0dce31ebefc0833216549f8d31e97f5
- SHA256
  
  ba035e9967f9b4caf497b256674aa0c99c600bd6dae65f01ab247702be741efd
- SHA512
  
  885549a73689a08524127d9c7ccaa2cf8925f64abfa193b139a50686aec70f3ff8089f2334d55c8fc838661d976ad11000099ec850c4bf0fbfae1df4f684afbb
- SSDEEP
  
  24576:T4ZfRTO1SD2Y8kNHvIJvRxtD/DZ10ULPKpHCq9CX8/aGbReTbCq:gpq1SFNmvRxtDH0ULPKpHCq9B
Score

10^/10

darkcomet rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

darkcometrattrojan

behavioral2

darkcometrattrojan

© 2018-2024

Terms | Privacy