Details
Malware Family DarkComet
Date Added April 25, 2017, 6:25 a.m.
MD5 3053ae2a579432207309b393b1a8e63e
Sha256 2275a8f64a811832bdb4592cccf3c64d17e36aa18e8e977e53bc0787d1d3275d
Robot Robots lovingly delivered by robohash.org
Config Sections
MSGICON 16
SH10 1
MSGTITLE cib
FTPPORT
FWB 0
FTPROOT
SH9 1
KEYNAME MicroUpdate
MUTEX DC_MUTEX-965YYKT
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 1
DIRATTRIB 6
FTPUSER
COMBOPATH 7
FTPHOST
SH8 1
FILEATTRIB 6
FTPUPLOADK
SH7 1
FAKEMSG 1
EDTDATE 16/04/2007
PWD
NETDATA dc1604kzl.duckdns.org:1604
MSGCORE 6C6F6B6F0D0A
OFFLINEK 1
GENCODE ZsJkjRU5WCWf
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
dc1604kzl.duckdns.org 78.172.235.27 TR
Geo Location
Yara Rules
Comments
comments powered by Disqus