Details
Robot
FileName
Malware Family DarkComet
Date Added 2016-03-20 03:00:03
MD5 3368143b9863bbe3d62b4a5262cd3d2a
Sha256 1c18fe5ffbafcb4be5f9984426b4e3ea50930cd47d34bc1b5135058de142a3f5
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
FTPSIZE
SH10 1
MUTEX DCMIN_MUTEX-53FGR71
SH9 1
DIRATTRIB 6
PERSINST 1
CHIDEF 1
SID Guest16_min
NETDATA ralala.zapto.org:1604
SH8 1
MELT 0
SH6 1
CHIDED 1
FTPROOT
FILEATTRIB 6
OFFLINEK 1
CHANGEDATE 1
KEYNAME DarkComet RAT
FTPPORT
EDTPATH DCSCMIN\IMDCSC.exe
COMBOPATH 4
PERS 1
GENCODE XXRKfP4mgkZZ
BIND 1
FTPUPLOADK
SH1 1
FWB 0
SH7 1
FTPPASS
FTPHOST
PWD
FTPUSER
SH4 1
SH5 1
EDTDATE 13/07/2009
SH3 1
INSTALL 1
Virustotal

0 out of 0 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
zapto.org ralala.zapto.org 92.89.156.237 FR