Details
Malware Family DarkComet
Date Added Oct. 2, 2015, 1:51 p.m.
MD5 a393aadad187e037b73b0d5f01f1dd45
Sha256 6869a74255f158e42c4ce797a52f14510a4da5c19ee8f2eee099d685ebe85345
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-JV3HD53
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 0
DIRATTRIB 0
FTPUSER
COMBOPATH 7
FTPHOST
FILEATTRIB 0
FTPUPLOADK
EDTDATE 16/04/2007
PWD
NETDATA darkcomet99.ddns.net:1604
OFFLINEK 1
GENCODE uaFdcjbj78rs
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

49 out of 56 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
darkcomet99.ddns.net 94.253.146.1 HR
Geo Location
Yara Rules
Comments
comments powered by Disqus