General
-
Target
lab_samples.zip
-
Size
1.6MB
-
Sample
240628-ngsbbswhlg
-
MD5
707717e0811f03c3713616ab9354ae9f
-
SHA1
7b8ee97f65075ecd800381642bcbca4515a61cec
-
SHA256
596263884d5474c2d3bb01238718eb30ce2c8539c99f66fa26b92171c6786c26
-
SHA512
bff3f233ed55af5ee45b945856f96eab57e76e2481dd1e652bb755004b54dc1411c387c5b055056c92d51464c2abac9e6770221d520886df97610b8ff7d365b2
-
SSDEEP
49152:mXGgg7/0/FoAG6BKls7W9onqaRf/Hcfs826P5:GOioAt7W9onnRXHcfZ2q
Behavioral task
behavioral1
Sample
lab_samples/b3b3bb519dd34a933a0b9920fa905ecaa5ce32c34871a29b5823a5b0fd4d9fc7.exe
Resource
win11-20240508-en
Malware Config
Extracted
darkcomet
Guest16
test213.no-ip.info:1604
DC_MUTEX-KHNEW06
-
InstallPath
MSDCSC\runddl32.exe
-
gencode
F6FE8i2BxCpu
-
install
true
-
offline_keylogger
true
-
persistence
true
-
reg_key
MicroUpdate
Targets
-
-
Target
lab_samples/b3b3bb519dd34a933a0b9920fa905ecaa5ce32c34871a29b5823a5b0fd4d9fc7.exe
-
Size
659KB
-
MD5
b3dc48d13f7d541fa583bf964c0603bf
-
SHA1
1dbaa68adc0a592508f7ad715bfcdf79c17990d6
-
SHA256
b3b3bb519dd34a933a0b9920fa905ecaa5ce32c34871a29b5823a5b0fd4d9fc7
-
SHA512
193bda0656a9d1be54dc655d9af3224ddccb78fc26aa77618fba1e3c36005a0368a200960cc28facc280df667f51a26bbef62282bbf8837cc036a41bfb8525f4
-
SSDEEP
12288:JR2N+L3K6boxK6dSmiTwntcm3Kbjbgv8YXoNCMF6+yWiL4Wlsfppj4W:P8+L3UM6SIcsHj4N5F6+yW/W4XP
Score7/10-
Executes dropped EXE
-