Details
FileName | |
---|---|
Malware Family | DarkComet |
Date Added | 2015-08-16 15:10:36 |
MD5 | 163375567ccb2f7a4c98263fbd7b4ae7 |
Sha256 | 79888b40a7fb26f555f6491f34d68f85c3cb40d15d44a5f08ed4dee3f3187401 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
FTPSIZE | 50 |
---|---|
SID | DC |
MUTEX | DC_MUTEX-76DKXJ0 |
SH9 | 1 |
DIRATTRIB | 6 |
PERSINST | 1 |
SH10 | 1 |
SH8 | 1 |
MELT | 0 |
SH6 | 1 |
FTPROOT | /public_html/ |
FILEATTRIB | 6 |
OFFLINEK | 1 |
KEYNAME | rundll32 |
FTPPORT | 21 |
EDTPATH | MSDCSC\msdcsc.exe |
COMBOPATH | 9 |
GENCODE | SK1BqBE0NzAj |
NETDATA | tamvan-berani.no-ip.biz:6969 |
FTPUPLOADK | 1 |
FWB | 0 |
SH7 | 1 |
FTPPASS | lfj248at93 |
FTPHOST | radika.herobo.com |
PWD | |
FTPUSER | a4001227 |
SH5 | 1 |
EDTDATE | 16/04/2001 |
CHANGEDATE | 1 |
INSTALL | 1 |
Virustotal
49 out of 57 AV Engines identified the sample as Malicious.