Details
Robot
FileName VirusShare_f034e04554bfc11cc53d0722416537d1
Malware Family DarkComet
Date Added 2015-03-23 20:29:25
MD5 f034e04554bfc11cc53d0722416537d1
Sha256 5660f5f16b0ea6f8a9ccb37118056d76f1c8be5321906d1d852ac3a9ee5af715
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
Version #KCMDDC51#
CampaignID Guest16
FTPUserName
FTPRoot
FTPSize
FireWallBypass 0
Password
OfflineKeylogger 1
FTPHost
Mutex DC_MUTEX-UA0NH40
FTPPort
FTPPassword
Domains p4kurd.no-ip.org:1604
Gencode XNegyvW77x8o
FTPKeyLogs
Virustotal

49 out of 53 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
no-ip.org p4kurd.no-ip.org 95.159.86.47 IQ