Details
Robot
FileName
Malware Family DarkComet
Date Added 2015-08-10 18:58:32
MD5 8b4080f6cf03c1319b80e07c4e3f4ca9
Sha256 c273d50b65a57b5977762c908b6983ac1cd0fd09dbaf8cbf8d198178edcf1a9e
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
FTPSIZE
SID Guest16_min
MUTEX DCMIN_MUTEX-CKESUSX
MSGCORE 4675636B20796F752E
FTPPORT
CHIDEF 1
GENCODE KX7iBrTcLckL
MSGICON 16
SH6 1
CHIDED 1
FTPROOT
MSGTITLE You gonna die.
PERS 1
OFFLINEK 1
KEYNAME Game
PDNS 127.0.0.1:localhost
EDTPATH DCSCMIN\game.exe
COMBOPATH 7
FAKEMSG 1
NETDATA 192.168.1.10:1604
FTPUPLOADK
SH1 1
FWB 0
FTPPASS
FTPHOST
PWD
FTPUSER
SH4 1
SH5 1
SH3 1
INSTALL 1
Virustotal

48 out of 55 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
192.168.1.10 0