Details
Malware Family DarkComet
Date Added Sept. 20, 2017, 6:25 a.m.
MD5 c6e98794d2a7a96b58e6931af36bb2a5
Sha256 d7d1c3306e39345ffbc2139666f1ad2493c5f44a2013568651a5a0b8794fdca4
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT
FWB
FTPROOT
KEYNAME DarkComet RAT
MUTEX DCMIN_MUTEX-2UDD0SF
INSTALL 1
SID Guest16_min
FTPPASS
FTPUSER
COMBOPATH 7
FTPHOST
FTPUPLOADK
PWD
NETDATA 192.168.137.154:1604
OFFLINEK 1
GENCODE wRAmEt6SW9Sa
FTPSIZE
EDTPATH DCSCMIN\IMDCSC.exe
Advertising
VirusTotal

60 out of 63 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
192.168.137.154 0
Geo Location
Yara Rules
Comments
comments powered by Disqus