Details
Malware Family DarkComet
Date Added Feb. 10, 2017, 6:25 a.m.
MD5 a70e14bd79ee4b3fa3763ada827196b0
Sha256 baab9ad8886c8e2217215c04cafec5d183d1e867148ff7dab39ac3b405b0d32e
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB 0
SH6 1
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-E0UBE3J
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 1
DIRATTRIB 6
CHIDEF 1
CHIDED 1
FTPUSER
SH5 1
COMBOPATH 7
FTPHOST
FILEATTRIB 6
FTPUPLOADK
EDTDATE 13/7/2009
PERS 1
PWD
NETDATA 192.168.168.175:1604
OFFLINEK 1
GENCODE en5TZc5KYkyu
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

54 out of 56 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
192.168.168.175 0
Geo Location
Yara Rules
Comments
comments powered by Disqus