Details
Malware Family DarkComet
Date Added June 20, 2015, 4:03 p.m.
MD5 5ce43c345a0daffe10039f6768aca8c5
Sha256 01dc88c914617f0e01748d0507ba6d3e9b5ea8ec64dc1d6538e24128466f27e3
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDED 1
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-JXMUBJY
MELT 1
INSTALL 1
SID Guest16
SH4 1
FTPPASS
PERSINST 1
DIRATTRIB 6
CHIDEF 1
SH3 1
FTPUSER
COMBOPATH 7
FTPHOST
FILEATTRIB 6
FTPUPLOADK
EDTDATE 16/04/2007
PERS 1
PWD
NETDATA 127.0.0.1:1604
OFFLINEK 1
GENCODE sFKfoTYkqu8n
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

49 out of 56 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
127.0.0.1 0
Geo Location
Yara Rules
Comments
comments powered by Disqus