Details
Malware Family DarkComet
Date Added Jan. 16, 2016, 3 a.m.
MD5 d285059c397f76c3cdc5ccd99e87ebf6
Sha256 a3af509765be9d92a292378d6e4432ba512a7037e4e1a9580905e9ab14432e66
Robot Robots lovingly delivered by robohash.org
Config Sections
FWB 1
SID Guest16_min
FTPPASS KovtA!*1
CHIDEF 1
CHIDED 1
PERS 1
FTPROOT /
SH10 1
KEYNAME AT
MUTEX DCMIN_MUTEX-W5CC58U
FILEATTRIB 6
EDTDATE 16/04/2007
NETDATA comegetit1.ddns.net:20000
GENCODE aGhugtmyV49x
EDTPATH DCSCMIN\IMDCSC.exe
MSGICON 64
FTPPORT 21
INSTALL 1
PERSINST 1
DIRATTRIB 6
SH1 1
SH3 1
SH4 1
SH5 1
SH6 1
SH7 1
SH8 1
MSGCORE The programme is down for maintaince, please try again in the next 24 hours.
FTPSIZE 10
FAKEMSG 1
MULTIBIND 1
CHANGEDATE 0
PDNS 127.0.0.1:localhost
MSGTITLE Sorry
FTPUSER u549544423
COMBOPATH 10
FTPHOST 31.170.164.103
BIND 1
FTPUPLOADK 1
MELT 1
PWD 12345
SH9 1
OFFLINEK 1
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
comegetit1.ddns.net 89.153.197.133 PT
Geo Location
Yara Rules
Comments
comments powered by Disqus