Details
Malware Family DarkComet
Date Added Oct. 4, 2015, 9:17 a.m.
MD5 311284c657b5d9e8b91f6a2c4d6c81f1
Sha256 1dd87c49e0a242eb94b0e764f09c7f2dfa117016a7518fc5ca418f08f2dc18df
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB
FTPROOT
KEYNAME DarkComet RAT
MUTEX DCMIN_MUTEX-R3XU5AJ
INSTALL 1
SID Guest16_min
FTPPASS
FTPUSER
COMBOPATH 7
FTPHOST
FTPUPLOADK
PWD
NETDATA sheeikhacking.no-ip.org:1604
OFFLINEK 1
GENCODE 2DSZfw5htiwV
FTPSIZE
EDTPATH DCSCMIN\IMDCSC.exe
Advertising
VirusTotal

54 out of 57 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
sheeikhacking.no-ip.org 204.95.99.35 US
Geo Location
Yara Rules
Comments
comments powered by Disqus