Details
Malware Family DarkComet
Date Added Sept. 2, 2017, 6:25 a.m.
MD5 1a88daf2c233136ca2669456f8d7dd63
Sha256 e18f4228897c70cb5c9763dda78649d9925b9bdc744b8670e91c589f7b16b278
Robot Robots lovingly delivered by robohash.org
Config Sections
MSGICON 0
CHIDEF 1
CHIDED 1
MSGTITLE Error - File not found
FTPPORT
FWB 1
SH6 1
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-E7FCE76
MELT 1
INSTALL 1
SID GTAV
SH4 1
FTPPASS
PERSINST 1
DIRATTRIB 0
SH1 1
SH3 1
FTPUSER
SH5 1
COMBOPATH 7
FTPHOST
FILEATTRIB 0
FTPUPLOADK
FAKEMSG 1
EDTDATE 16/04/2007
PERS 1
PWD
NETDATA brunokayn.ddns.net:1605|188.93.236.64:1605|83.132.46.37:1605
MSGCORE 44617461477269645669657743656C6C2E4572726F72546578742050726F7065727479202853797374656D2E57696E646F77732E466F726D7329
OFFLINEK 1
GENCODE dEQ6lw5WcMfy
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

60 out of 65 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
brunokayn.ddns.net 83.132.46.37 PT
188.93.236.64 PT
83.132.46.37 PT
Geo Location
Yara Rules
Comments
comments powered by Disqus