darkcomet | 8b275d3083c52a92ce1055cb63e1bc7faf1751e718d3cb4d940d82e14cf2b7f2 | Triage

Submit
Reports

Overview

overview

Static

static

1afa4ed1f1...18.exe

windows7-x64

1afa4ed1f1...18.exe

windows10-2004-x64

Sharing

General

Target

1afa4ed1f1150676e98bb8b5f063bd57_JaffaCakes118
Size

649KB
Sample

240701-mpz6gazeln
MD5

1afa4ed1f1150676e98bb8b5f063bd57
SHA1

86d58daceebb341d4648c756fdb12ed1d0e32e89
SHA256

8b275d3083c52a92ce1055cb63e1bc7faf1751e718d3cb4d940d82e14cf2b7f2
SHA512

d8f14243e7a4e2a2c17107b0c6fbc2d11e7bc4186cd50dbfa10ebfa53728c9cbe3efc94d8f334dfd04167065ddd654b63dc24c07520dfde42209cfaf12d1621b
SSDEEP

12288:Fk0QNlxOnizg37k4LUSd0rv5WvYW5HMzLXj9pqQd7cqESAYi991fA/aVf:m0QpGih4bd0rv5+l5szLXj917cqPu91v

Score

10^/10

darkcomet pigeon rat trojan

Static task

static1

pigeon darkcomet

2 signatures

Behavioral task

behavioral1

Sample

1afa4ed1f1150676e98bb8b5f063bd57_JaffaCakes118.exe

Resource

win7-20240508-en

darkcomet pigeon rat trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1afa4ed1f1150676e98bb8b5f063bd57_JaffaCakes118.exe

Resource

win10v2004-20240508-en

darkcomet pigeon rat trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

darkcomet

Botnet

Pigeon

C2

pigeonblackh.no-ip.org:1604

Mutex

DC_MUTEX-G61VKTZ

Attributes

gencode
1SaFPrQvNSrh
install
false
offline_keylogger
true
persistence
false

Targets

- Target
  
  1afa4ed1f1150676e98bb8b5f063bd57_JaffaCakes118
- Size
  
  649KB
- MD5
  
  1afa4ed1f1150676e98bb8b5f063bd57
- SHA1
  
  86d58daceebb341d4648c756fdb12ed1d0e32e89
- SHA256
  
  8b275d3083c52a92ce1055cb63e1bc7faf1751e718d3cb4d940d82e14cf2b7f2
- SHA512
  
  d8f14243e7a4e2a2c17107b0c6fbc2d11e7bc4186cd50dbfa10ebfa53728c9cbe3efc94d8f334dfd04167065ddd654b63dc24c07520dfde42209cfaf12d1621b
- SSDEEP
  
  12288:Fk0QNlxOnizg37k4LUSd0rv5WvYW5HMzLXj9pqQd7cqESAYi991fA/aVf:m0QpGih4bd0rv5+l5szLXj917cqPu91v
Score

10^/10

darkcomet pigeon rat trojan
- Darkcomet
  DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.
  trojan rat darkcomet
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

pigeondarkcomet

behavioral1

darkcometpigeonrattrojan

behavioral2

darkcometpigeonrattrojan

© 2018-2024

Terms | Privacy