Details
Malware Family DarkComet
Date Added July 24, 2018, 6:25 a.m.
MD5 349a4cbe64bbecf8a43ca004ba48ea41
Sha256 059f0fe243af6226a9b739d4e77e56c1d2f47db87477920c539ad01dae804993
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB
FTPROOT
KEYNAME LOL
MUTEX DCMIN_MUTEX-1YZ0UDX
INSTALL 1
SID Slaves
FTPPASS
FTPUSER
COMBOPATH 7
FTPHOST
FTPUPLOADK
PWD
NETDATA 172.116.36.28:1604
OFFLINEK 1
GENCODE SBHkHCNEhM8T
FTPSIZE
EDTPATH Windows\lol.exe
Advertising
VirusTotal

57 out of 64 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
172.116.36.28 US
Geo Location
Yara Rules
Comments
comments powered by Disqus