Details
Malware Family DarkComet
Date Added Dec. 27, 2017, 6:25 a.m.
MD5 a4402407997639c7b6bdf9483d1a460d
Sha256 c9d311ed59cfe1bf1c8737a6b47e3db36c5a51dfae4f9b2523e7484c97617f57
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDEF 1
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-85RUMV7
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 1
DIRATTRIB 2
SH1 1
CHIDED 1
FTPUSER
COMBOPATH 7
FTPHOST
FILEATTRIB 2
FTPUPLOADK
EDTDATE 16/04/2007
PERS 1
PWD
NETDATA suicrat.ddns.net:1565
OFFLINEK 1
GENCODE 8LEisQm1LZFw
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

63 out of 66 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
suicrat.ddns.net 85.113.58.18 RU
Geo Location
Yara Rules
Comments
comments powered by Disqus