Details
Malware Family DarkComet
Date Added Jan. 25, 2018, 6:25 a.m.
MD5 f359a38c117eb1ad5a1ab31cf13d0f0f
Sha256 57fd631a0296aa641ffb947b641709334d29cdddc3d3b8d1180cbd88e1107465
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDEF 1
FTPPORT
FWB 0
FTPROOT
KEYNAME MicroUpdate
MUTEX DC_MUTEX-H75C7YY
MELT 1
INSTALL 1
SID Test1337
SH4 1
FTPPASS
PERSINST 1
DIRATTRIB 6
SH1 1
CHIDED 1
FTPUSER
COMBOPATH 7
FTPHOST
SH8 1
FILEATTRIB 6
FTPUPLOADK
EDTDATE 16/04/2007
PERS 1
PWD
SH3 1
NETDATA mrruslan.ddns.net:81|mrruslan.ddns.net:1604|192.168.0.104:81|192.168.0.104:1604
OFFLINEK 1
GENCODE LHFm1qQf20oL
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
mrruslan.ddns.net 212.76.7.94 KZ
mrruslan.ddns.net 212.76.7.94 KZ
192.168.0.104 0
192.168.0.104 0
Geo Location
Yara Rules
Comments
comments powered by Disqus