Details
Malware Family DarkComet
Date Added July 7, 2018, 6:25 a.m.
MD5 706eeefbac3de4d58b27d964173999c3
Sha256 a79c246f3714159b4391814bf3e05ebced0e335a6dd9e425d594c444c4798b19
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDEF 1
FTPPORT
FWB 0
FTPROOT
KEYNAME sys32Update
MUTEX DC_MUTEX-4LXFFJB
MELT 1
INSTALL 1
SID Guest16
FTPPASS
PERSINST 1
DIRATTRIB 6
SH1 1
CHIDED 1
FTPUSER
COMBOPATH 10
FTPHOST
FILEATTRIB 6
FTPUPLOADK
EDTDATE 16/04/2007
PERS 1
PWD
NETDATA 178.32.64.21:81
OFFLINEK 1
GENCODE bXwwBHzjvThQ
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

60 out of 66 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
178.32.64.21 FR
Geo Location
Yara Rules
Comments
comments powered by Disqus