Details
Malware Family DarkComet
Date Added March 23, 2015, 8:29 p.m.
MD5 4b64eed8c079722ef0dc9feb456917eb
Sha256 da813070fefdc7a86db1b7f5cca9df15f13f720f42784b6d8168ac9bdea56206
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPKeyLogs
OfflineKeylogger 1
CampaignID Guest16_min
FTPSize
FTPHost
FTPPort
FTPRoot
FTPPassword
Version #KCMDDC51#
Mutex DCMIN_MUTEX-7TFFJ7W
Domains ziga55.no-ip.biz:81
Gencode hx05SVwlcYcP
Password
FTPUserName
FireWallBypass
Advertising
VirusTotal

51 out of 54 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
ziga55.no-ip.biz 173.0.8.166 A1
Geo Location
Yara Rules
Comments
comments powered by Disqus