Details
Malware Family DarkComet
Date Added Sept. 14, 2018, 6:25 a.m.
MD5 b6d5270e6708908ff56aa91b1819be27
Sha256 47ed5cd03fc6c390a69d18d68b0a8050380c6a33291e62d56d9e5843bf81791f
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDEF 1
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-9EAU4H7
MELT 1
INSTALL 1
SID Microsoft
FTPPASS
PERSINST 1
DIRATTRIB 6
SH1 1
CHIDED 1
FTPUSER
COMBOPATH 10
FTPHOST
FILEATTRIB 6
FTPUPLOADK
EDTDATE 16/04/2018
PERS 1
PWD
NETDATA 194.44.227.222:1604
OFFLINEK 1
GENCODE yfo42AVZBkbG
FTPSIZE
CHANGEDATE 1
EDTPATH msdcsc.exe
Advertising
VirusTotal

58 out of 68 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
194.44.227.222 UA
Geo Location
Yara Rules
Comments
comments powered by Disqus