Details
Malware Family DarkComet
Date Added Sept. 1, 2018, 6:25 a.m.
MD5 57cbf541fae81fa8e205c96f2d41798c
Sha256 0656066be211ccc922f7bb72a4ac1cc8c16752f136f7af6610a95277446618ee
Robot Robots lovingly delivered by robohash.org
Config Sections
MSGICON 16
MSGTITLE Hata!
FTPPORT
FWB 1
FTPROOT
SH9 1
KEYNAME systeem
MUTEX DC_MUTEX-2FK0PGJ
MELT 0
INSTALL 1
SID kurdo
FTPPASS
PERSINST 0
DIRATTRIB 6
SH1 1
FTPUSER
COMBOPATH 8
FTPHOST
FILEATTRIB 6
FTPUPLOADK
SH7 1
FAKEMSG 1
EDTDATE 16/04/2007
PWD serxwaz
NETDATA kurusuntirki.duckdns.org:1604
MSGCORE 50726F6772616D204B7572756C75726B656E2048617461204F6C75FE74752E
OFFLINEK 1
GENCODE KrccpXapJYFs
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
kurusuntirki.duckdns.org 51.38.94.254 GB
Geo Location
Yara Rules
Comments
comments powered by Disqus