darkcomet | 596263884d5474c2d3bb01238718eb30ce2c8539c99f66fa26b92171c6786c26 | Triage

Submit
Reports

Overview

overview

Static

static

lab_sample...c7.exe

windows11-21h2-x64

7

Resubmissions

28-06-2024 11:25

240628-njn2paxalh 10

28-06-2024 11:22

240628-ngsbbswhlg 10

Sharing

General

Target

lab_samples.zip
Size

1.6MB
Sample

240628-ngsbbswhlg
MD5

707717e0811f03c3713616ab9354ae9f
SHA1

7b8ee97f65075ecd800381642bcbca4515a61cec
SHA256

596263884d5474c2d3bb01238718eb30ce2c8539c99f66fa26b92171c6786c26
SHA512

bff3f233ed55af5ee45b945856f96eab57e76e2481dd1e652bb755004b54dc1411c387c5b055056c92d51464c2abac9e6770221d520886df97610b8ff7d365b2
SSDEEP

49152:mXGgg7/0/FoAG6BKls7W9onqaRf/Hcfs826P5:GOioAt7W9onnRXHcfZ2q

Score

10^/10

darkcomet guest16

Static task

static1

guest16 darkcomet

2 signatures

Behavioral task

behavioral1

Sample

lab_samples/b3b3bb519dd34a933a0b9920fa905ecaa5ce32c34871a29b5823a5b0fd4d9fc7.exe

Resource

win11-20240508-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

darkcomet

Botnet

Guest16

C2

test213.no-ip.info:1604

Mutex

DC_MUTEX-KHNEW06

Attributes

InstallPath
MSDCSC\runddl32.exe
gencode
F6FE8i2BxCpu
install
true
offline_keylogger
true
persistence
true
reg_key
MicroUpdate

Targets

- Target
  
  lab_samples/b3b3bb519dd34a933a0b9920fa905ecaa5ce32c34871a29b5823a5b0fd4d9fc7.exe
- Size
  
  659KB
- MD5
  
  b3dc48d13f7d541fa583bf964c0603bf
- SHA1
  
  1dbaa68adc0a592508f7ad715bfcdf79c17990d6
- SHA256
  
  b3b3bb519dd34a933a0b9920fa905ecaa5ce32c34871a29b5823a5b0fd4d9fc7
- SHA512
  
  193bda0656a9d1be54dc655d9af3224ddccb78fc26aa77618fba1e3c36005a0368a200960cc28facc280df667f51a26bbef62282bbf8837cc036a41bfb8525f4
- SSDEEP
  
  12288:JR2N+L3K6boxK6dSmiTwntcm3Kbjbgv8YXoNCMF6+yWiL4Wlsfppj4W:P8+L3UM6SIcsHj4N5F6+yW/W4XP
Score

7^/10
- Executes dropped EXE
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

guest16darkcomet

behavioral1

© 2018-2024

Terms | Privacy