Details
Robot
FileName
Malware Family DarkComet
Date Added 2016-04-23 03:00:04
MD5 52b8fde2eb99ae936940716eb0fba7ff
Sha256 85b768e50631e906094c4df7df7aa3020c08c1c2a84620956a97147e407f3a03
Robot Robots lovingly delivered by robohash.org
Advertising
Config Data
FTPSIZE 10
MUTEX DC_MUTEX-Z7B1RU2
SH9 1
DIRATTRIB 6
FTPPORT 21
CHIDEF 1
SID --KANA--
CHANGEDATE 0
MSGTITLE Welcome
FTPROOT /
MULTIBIND 1
OFFLINEK 1
KEYNAME MicroUpdate
EDTPATH MSDCSC\msdcsc.exe
COMBOPATH 7
FILEATTRIB 6
FAKEMSG 1
NETDATA bhoot.no-ip.org:100
FTPUPLOADK 1
SH1 1
FWB 0
PWD runaway
SH3 1
INSTALL 1
SH10 1
SH6 1
MSGCORE 57656C636F6D6520746F204461726B436F6D6574205241542E
PERSINST 1
OVDNS 1
SH8 1
MSGICON 48
CHIDED 1
PERS 1
PDNS 127.0.0.1:youtube.com
MELT 1
GENCODE y2QmclTAtSVR
BIND 1
SH7 1
FTPPASS hacker911911
FTPHOST ftp.drivehq.com
FTPUSER hadesisback
SH4 1
SH5 1
EDTDATE 16/04/2007
Virustotal

50 out of 57 AV Engines identified the sample as Malicious.

Virustotal Report