Details
Robot
FileName VirusShare_f041f1b089d563628d9230fbc13fdac5
Malware Family DarkComet
Date Added 2015-03-23 20:29:25
MD5 f041f1b089d563628d9230fbc13fdac5
Sha256 e5116c9780358de7340bdb3a644308b391b11e9e5479f3f53327040fe150c466
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
Version #KCMDDC51#
CampaignID _HacK
FTPUserName
FTPRoot
FTPSize
FireWallBypass 0
Password silico
OfflineKeylogger 1
FTPHost
Mutex DC_MUTEX-WU5UQG2
FTPPort
FTPPassword
Domains 127.0.0.1:1604|sufremas.no-ip.org:1604
Gencode 9WyTPWBDo0sC
FTPKeyLogs
Virustotal

50 out of 54 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
no-ip.org sufremas.no-ip.org 187.186.247.154 MX