Details
Malware Family DarkComet
Date Added Oct. 20, 2017, 6:25 a.m.
MD5 cf86e1fe687c4c3dd7f1c2fc5c662f2d
Sha256 151fcada15c10121740608aa94f3e7097de86d307c69bf9b5d7dcd066d7365d2
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPPORT 21
FWB 0
FTPROOT /
KEYNAME WindowsUpdate181017
MUTEX DC_MUTEX-ZZ2K2W7
MELT 0
INSTALL 1
SID Lat1148
FTPPASS Money!@27
PERSINST 1
DIRATTRIB 6
FTPUSER 1148lat@htdrc.co
COMBOPATH 6
FTPHOST ftp.htdrc.co
FILEATTRIB 6
FTPUPLOADK 1
EDTDATE 16/04/2007
PERS 1
PWD
NETDATA 185.61.149.134:1148|185.61.149.134:1148
OFFLINEK 1
GENCODE oZdtAUpk1GZ5
FTPSIZE 2
CHANGEDATE 0
EDTPATH Windows\msdcs181017c.exe
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
185.61.149.134 SE
185.61.149.134 SE
Geo Location
Yara Rules
Comments
comments powered by Disqus