Details
Malware Family DarkComet
Date Added May 14, 2017, 6:25 a.m.
MD5 6df1539365fc289abf6ceeed052bde9b
Sha256 76cd0d3634c9e75dc23162530d9f1d41f92632d8742cadba56a8990624b3e362
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB 0
FTPROOT
SH10 1
KEYNAME MicroUpdate
MUTEX DC_MUTEX-6RLFZLK
MELT 0
INSTALL 1
SID CS:GO
FTPPASS
PERSINST 0
DIRATTRIB 0
FTPUSER
COMBOPATH 7
FTPHOST
SH8 1
FILEATTRIB 0
FTPUPLOADK
SH7 1
EDTDATE 04/05/2017
PWD
NETDATA csgohacker2017.ddns.net:1604
SH9 1
OFFLINEK 1
GENCODE HZbLJ6hN1V6y
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

58 out of 61 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
csgohacker2017.ddns.net 191.191.170.241 BR
Geo Location
Yara Rules
Comments
comments powered by Disqus