Details
Robot
FileName
Malware Family DarkComet
Date Added 2016-04-23 03:00:04
MD5 0e681d194a9017ce828ecb3f938609ef
Sha256 8f3afb40d2f5cee68b79066fd82c126a4a8b4e8b06d15af6607c0a4ef7ec1a4f
Robot Robots lovingly delivered by robohash.org
Advertising
Config Data
FTPSIZE 10
MUTEX DC_MUTEX-XUD13J9
SH9 1
DIRATTRIB 0
FTPPORT 21
CHIDEF 1
SID Guest16
CHANGEDATE 0
MSGTITLE Welcome
FTPROOT /
MULTIBIND 1
OFFLINEK 1
KEYNAME opera
EDTPATH MSDCSC\opera.exe
COMBOPATH 2
FILEATTRIB 0
FAKEMSG 1
NETDATA ratportsuz.zapto.org:
FTPUPLOADK 1
SH1 1
FWB 0
PWD 123321
SH3 1
INSTALL 1
SH10 1
SH6 1
MSGCORE 57656C636F6D6520746F204461726B436F6D6574205241542E0D0A496620796F75207365652074686973206D6573736167652C206974206D65616E73207468652073747562207375636365737366756C6C792072756E7320616E6420796F752077696C6C206170656172200D0A696E20746865206D61737465722075736572206C6973742E0D0A
PERSINST 0
OVDNS 1
SH8 1
MSGICON 0
CHIDED 1
PERS 1
PDNS 127.0.0.1:youtube.com
MELT 0
GENCODE r5DFVd4vlpAM
BIND 1
SH7 1
FTPPASS hacker911911
FTPHOST ftp.drivehq.com
FTPUSER hadesisback
SH4 1
SH5 1
EDTDATE 16/04/2007
Virustotal

50 out of 55 AV Engines identified the sample as Malicious.

Virustotal Report