Details
Malware Family DarkComet
Date Added July 22, 2018, 6:25 a.m.
MD5 6d419d59caf2faaee1b0839a62cec976
Sha256 aca6d216e19e01d8615156c8d0a063fa2a3c91da0c941ef23f69414e12499f4e
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-5FZ7A9U
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 0
DIRATTRIB 0
FTPUSER
COMBOPATH 7
FTPHOST
FILEATTRIB 0
FTPUPLOADK
EDTDATE 16/04/2007
PWD
NETDATA ratlikecomet.ddns.net:53896
BIND 1
OFFLINEK 1
GENCODE 8Y2lJqMGRC0p
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

54 out of 66 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
ratlikecomet.ddns.net 95.146.249.86 GB
Geo Location
Yara Rules
Comments
comments powered by Disqus