Details
Malware Family DarkComet
Date Added March 23, 2015, 8:29 p.m.
MD5 ee07b52d1dcb016e22c31360b2893f39
Sha256 abb90b253e13e3982012ca2156bab1184140307d6f19fd75d9ba5ff060982ec2
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPKeyLogs
OfflineKeylogger 1
FTPHost
FTPSize
CampaignID Guest16
FTPPort
FTPRoot
FTPPassword
Version #KCMDDC51#
Mutex DC_MUTEX-0VXDZEM
Domains leinuo2rat.no-ip.biz:1604
Gencode KMojQv956AVs
Password
FTPUserName
FireWallBypass 0
Advertising
VirusTotal

50 out of 54 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
leinuo2rat.no-ip.biz 000.000.000.000
Geo Location
Yara Rules
Comments
comments powered by Disqus