Details
Malware Family DarkComet
Date Added March 23, 2015, 8:29 p.m.
MD5 b8b74c244a970ed9746aff3bb24f06f6
Sha256 6c9e7d03d80afd12c201b450d2b8a25defc4e722f0ecfe5f92ab5d8817353b5a
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPKeyLogs 1
OfflineKeylogger 1
CampaignID Guest16
FTPSize 2
FTPHost ftp..hackrecovery.altervista.org
FTPPort 21
FTPRoot /snakes/
FTPPassword vaccifopna24
Version #KCMDDC51#
Mutex DC_MUTEX-A2HJEQ8
Domains snakes63.no-ip.org:1500
Gencode yTA0MBXr7BoU
Password
FTPUserName hackrecovery
FireWallBypass 0
Advertising
VirusTotal

52 out of 57 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
snakes63.no-ip.org 86.194.240.28 FR
Geo Location
Yara Rules
Comments
comments powered by Disqus