DarkComet

DarkComet is a remote access trojan (RAT) developed in 2011 and widely used for malicious activities. It enables attackers to log keystrokes, control webcams, disable security features, and conduct DDoS attacks.

Known Variants

Includes multiple custom versions tailored for various attack scenarios.

Mitigation Strategies

Disable remote desktop protocols, enforce strict access controls, and deploy endpoint protection tools capable of detecting RAT behaviors.

Targeted Industries or Sectors

Commonly targets individuals, small businesses, and occasionally large organizations for surveillance and data theft.

Associated Threat Actors

Widely used by opportunistic attackers and some nation-state actors due to its ease of use and open availability.

References

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Ready to uncover malware networks?

We can help you detect malware families and expose their hidden infrastructure blending into malicious networks and hosting providers.

Book your Demo Today

Hunt Intelligence, Inc.