Details
Malware Family DarkComet
Date Added March 14, 2017, 6:25 a.m.
MD5 430a4c9547582546ea238be55af72236
Sha256 20a2cc7a4c009c19ee1d300a8d12ff1e0638024db5af5670f698e47c144329aa
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-NV1BVB8
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 0
DIRATTRIB 0
FTPUSER
COMBOPATH 7
FTPHOST
FILEATTRIB 6
FTPUPLOADK
EDTDATE 16/04/2007
PWD
NETDATA batuhan32200269116.duckdns.org:1604
OFFLINEK 1
GENCODE 7mZv5Cc56xKr
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

56 out of 58 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
batuhan32200269116.duckdns.org 85.107.232.142 TR
Geo Location
Yara Rules
Comments
comments powered by Disqus