General
-
Target
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
-
Size
1.7MB
-
Sample
240702-df9twaxbkq
-
MD5
82b16a4409a2a9b895b1223722aaf72a
-
SHA1
c1eb071cbf3ef74d57448bed6f4473b62ea6b4b6
-
SHA256
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
-
SHA512
9b3b3acb9962e3d0028d97b9c68813eb663256729b004ab8a62b567dc50146fa5fe40dfc679e14e4305623277d506f68e70b7ab57b1b22e96250c3f203fb00be
-
SSDEEP
24576:qMyptg5dkAmL8jyLQLNW0yzotcSHVZwMz8gkyJ8fPg:3te3g
Static task
static1
Behavioral task
behavioral1
Sample
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
darkcomet
1
anthraxgold.no-ip.info:666
DC_MUTEX-169BEXQ
-
gencode
M6QvjZgri1v2
-
install
false
-
offline_keylogger
false
-
persistence
false
Targets
-
-
Target
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
-
Size
1.7MB
-
MD5
82b16a4409a2a9b895b1223722aaf72a
-
SHA1
c1eb071cbf3ef74d57448bed6f4473b62ea6b4b6
-
SHA256
c490bb6092aea56acdd4db1978e9424cc404eff773342bb6df5fba09de506e8d
-
SHA512
9b3b3acb9962e3d0028d97b9c68813eb663256729b004ab8a62b567dc50146fa5fe40dfc679e14e4305623277d506f68e70b7ab57b1b22e96250c3f203fb00be
-
SSDEEP
24576:qMyptg5dkAmL8jyLQLNW0yzotcSHVZwMz8gkyJ8fPg:3te3g
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-