Details
Malware Family DarkComet
Date Added April 27, 2017, 6:25 a.m.
MD5 fc1b40b42832d74cd0b022f7f6e5dd61
Sha256 43211e5a1444dc7122b077f367c52aa87c91325bc871f4f5738dd0355b7506ab
Robot Robots lovingly delivered by robohash.org
Config Sections
CHIDEF 1
FTPPORT
FWB 0
SH6 1
FTPROOT
SH10 1
KEYNAME MicroUpdate
MUTEX DC_MUTEX-T2VZ4MY
MELT 0
INSTALL 1
SID Guest16
FTPPASS
PERSINST 1
DIRATTRIB 6
SH1 1
CHIDED 1
FTPUSER
SH5 1
COMBOPATH 7
FTPHOST
SH8 1
FILEATTRIB 6
FTPUPLOADK
SH7 1
EDTDATE 16/04/2007
PERS 1
PWD
NETDATA billhosts.ddns.net:1604
SH9 1
OFFLINEK 1
GENCODE KnWdommgzFSk
FTPSIZE
CHANGEDATE 1
EDTPATH MSDCSC\msdcsc.exe
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
billhosts.ddns.net 46.61.11.121 RU
Geo Location
Yara Rules
Comments
comments powered by Disqus