Details
Malware Family DarkComet
Date Added March 23, 2015, 8:29 p.m.
MD5 a9db8d5bbc9d15ea3c783aa4c077b82b
Sha256 8d572a516f0178ca4b5d667b78ce97ab033af6b332dc0b9979bd634d555cde9d
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPKeyLogs
OfflineKeylogger 1
FTPHost
FTPSize
CampaignID Guest16
FTPPort
FTPRoot
FTPPassword
Version #KCMDDC42F#
Mutex DC_MUTEX-L8TU65E
Domains davlezem.no-ip.biz:25565
Gencode ybYB7FJJ.Pj*
Password
FTPUserName
FireWallBypass 1
Advertising
VirusTotal

45 out of 53 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
davlezem.no-ip.biz 000.000.000.000
Geo Location
Yara Rules
Comments
comments powered by Disqus