Details
Malware Family DarkComet
Date Added Sept. 8, 2017, 6:25 a.m.
MD5 531de09a11148143f88d8c1af6674d4c
Sha256 28ebc15d8beef0921fb536163d2c81ca6efa671c3380883184cb5c7d2fbe4733
Robot Robots lovingly delivered by robohash.org
Config Sections
MSGICON 16
MSGTITLE Anti-leak
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-LPWWZ2Y
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 0
DIRATTRIB 0
FTPUSER
COMBOPATH 6
FTPHOST
FILEATTRIB 0
FTPUPLOADK
FAKEMSG 1
EDTDATE 16/04/2007
PERS 1
PWD test
NETDATA convict.duckdns.org:1604
MSGCORE 596F7572206163636F756E7420686173206265656E206C6F636B65642064756520746F2072756E6E696E67206F6E206E756D6572696F7573204950732E0D0A506C6561736520636F6E74616374206D6520696620796F752062656C6965766520746869732077617320646F6E6520696E206572726F722E0D0A0D0A2D20416E6369656E74
OFFLINEK 1
GENCODE xJkrRLJbmVC6
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
convict.duckdns.org 203.114.174.247 NZ
Geo Location
Yara Rules
Comments
comments powered by Disqus