Details
Malware Family DarkComet
Date Added April 12, 2017, 6:25 a.m.
MD5 9026246afcc01ef5c5c8961dc1c6bc37
Sha256 e99ff2a9ce8020f2429df9c6cf8a6dcd1e9c46d29320bdc760c812fb563b2f22
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB 1
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-E7C2T65
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 1
DIRATTRIB 0
FTPUSER
COMBOPATH 7
FTPHOST
FILEATTRIB 0
FTPUPLOADK
EDTDATE
PERS 1
PWD
NETDATA 217.44.145.105:1604
OFFLINEK 1
GENCODE mVlwaNhHXfrU
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

57 out of 61 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
217.44.145.105 GB
Geo Location
Yara Rules
Comments
comments powered by Disqus