Details
Malware Family DarkComet
Date Added Jan. 25, 2018, 6:25 a.m.
MD5 d0827f339213526025e5d25806eb1bf9
Sha256 54b0c56426dd59351168f09cc45405002a056589b7aa6fc04211dfc3be83b438
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDEF 1
FTPPORT
FWB 1
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-A7UMJE2
MELT 0
INSTALL 1
SID csv
FTPPASS
PERSINST 0
DIRATTRIB 2
SH1 1
CHIDED 1
FTPUSER
COMBOPATH 6
FTPHOST
SH8 1
FILEATTRIB 2
FTPUPLOADK
EDTDATE 16/04/2017
PERS 1
PWD
NETDATA 84.83.77.156:1605
OFFLINEK 1
GENCODE ccLe4N5pevvx
FTPSIZE
CHANGEDATE 0
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

58 out of 64 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
84.83.77.156 NL
Geo Location
Yara Rules
Comments
comments powered by Disqus