Details
Malware Family DarkComet
Date Added April 22, 2016, 6:28 a.m.
MD5 458236f18b5195f9be1335b81ca47745
Sha256 670ca83f29d29e530b07ab89c39bddd66360f04349eec36d9b1682639de249f3
Robot Robots lovingly delivered by robohash.org
Config Sections
FWB 0
SID Guest16
FTPPASS
CHIDEF 1
CHIDED 1
PERS 1
FTPROOT
SH10 1
KEYNAME MicroUpdate
MUTEX DC_MUTEX-GRX8ET6
FILEATTRIB 0
EDTDATE 16/04/2007
NETDATA 127.0.0.1:1604|10.196.1.6:1604|10.196.1.6:8080|127.0.0.1:8080
GENCODE 0txZh2QiDybB
EDTPATH MSDCSC\msdcsc.exe
MSGICON 16
FTPPORT
INSTALL 1
PERSINST 1
DIRATTRIB 0
SH1 1
SH3 1
SH4 1
SH5 1
SH6 1
SH7 1
SH8 1
MSGCORE 596F7520617265206D697373696E6720746865207265717569726564202E646C6C2066696C6573212020506C65617365207265696E7374616C6C207468652066696C6573206265666F726520636F6E74696E75696E6721
FTPSIZE
FAKEMSG 1
CHANGEDATE 0
PDNS 127.0.0.1:localhost|sorry.no-ip.biz:1604
MSGTITLE Error!
FTPUSER
OVDNS 1
COMBOPATH 2
FTPHOST
BIND 1
FTPUPLOADK
MELT 1
PWD fakeyou3412
SH9 1
OFFLINEK 1
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
127.0.0.1 0
10.196.1.6 0
10.196.1.6 0
127.0.0.1 0
Geo Location
Yara Rules
Comments
comments powered by Disqus