Details
Malware Family DarkComet
Date Added March 23, 2015, 8:29 p.m.
MD5 8d50c700ef9a127f132f2353be97e6f7
Sha256 68cf1dbca640ed1dd29155d76512dd3ac647bca72d59001d78173c9d7442cc90
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPKeyLogs
OfflineKeylogger
FTPHost
FTPSize
CampaignID JustinH
FTPPort
FTPRoot
FTPPassword
Version #KCMDDC2#
Mutex DC_MUTEX-32HUG07
Domains confirmhf.dyndns.org:1604
Gencode G8#WGiNxwAF
Password
FTPUserName
FireWallBypass
Advertising
VirusTotal

46 out of 53 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
confirmhf.dyndns.org 000.000.000.000
Geo Location
Yara Rules
Comments
comments powered by Disqus