Details
Malware Family DarkComet
Date Added Dec. 11, 2017, 6:25 a.m.
MD5 aac0d82de613f6e7a74c7185e4f8f39f
Sha256 d4087670ebbcc58e7ded11e01f9abedb7ea7da16fd9f670636cf20ff2cf43a88
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT 21
FWB 0
FTPROOT /
MUTEX DC_MUTEX-DQS1CXD
SID Guest16
FTPPASS 0123456789
FTPUSER username
SH5 1
FTPHOST ftp.yourhost.com
SH9 1
FTPUPLOADK 1
PWD
NETDATA 127.0.0.1:81
OFFLINEK
GENCODE jQpmENliwJAi
FTPSIZE 10
Advertising
VirusTotal

61 out of 65 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
127.0.0.1 0
Geo Location
Yara Rules
Comments
comments powered by Disqus