Details
FileName | |
---|---|
Malware Family | DarkComet |
Date Added | 2015-11-07 20:00:45 |
MD5 | 88f8c952d1fbed8f760992657d9d78a0 |
Sha256 | ab9bcfd83d4fb79ed31e292d9b014d99ece0ddb9155dee9f460de6304b725ae2 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
FTPSIZE | |
---|---|
SID | HF |
SH6 | 1 |
SH9 | 1 |
DIRATTRIB | 0 |
FTPPORT | |
CHIDEF | 1 |
GENCODE | xA2rMUH098FJ |
SH10 | 1 |
SH8 | 1 |
MSGICON | 16 |
CHANGEDATE | 1 |
CHIDED | 1 |
FTPROOT | |
MSGTITLE | Windows |
PERS | 1 |
OFFLINEK | 1 |
MSGCORE | 5468652066696C652069732064656D61676564206F7220646F6573206E6F74206578697374 |
FTPUPLOADK | |
KEYNAME | MicroUpdate |
PERSINST | 1 |
EDTPATH | MSDCSC\msdcsc.exe |
MELT | 0 |
COMBOPATH | 7 |
FILEATTRIB | 0 |
FAKEMSG | 1 |
NETDATA | bonke.no-ip.org:1604|127.0.0.1:1604|gil-galad.no-ip.biz:1604 |
MUTEX | DC_MUTEX-UEF5TJZ |
SH1 | 1 |
FWB | 0 |
SH7 | 1 |
FTPPASS | |
FTPHOST | |
PWD | 123321123321 |
FTPUSER | |
SH4 | 1 |
SH5 | 1 |
EDTDATE | 16/04/2007 |
SH3 | 1 |
INSTALL | 1 |
Virustotal
48 out of 53 AV Engines identified the sample as Malicious.