Details
Malware Family DarkComet
Date Added March 23, 2015, 8:29 p.m.
MD5 ff772db05351e2fb39cddfe285948b50
Sha256 6562860a681fd36a816e71d34fa6e7a1bd6d807303ac1d2c1c6d63fea6e70b2e
Robot Robots lovingly delivered by robohash.org
Config Sections
FTPKeyLogs
OfflineKeylogger
FTPHost
FTPSize
CampaignID Guest16
FTPPort
FTPRoot
FTPPassword
Version #KCMDDC2#
Mutex DC_MUTEX-0MA2F4R
Domains hackinsupremo.no-ip.biz:81
Gencode Qrfox5G*RwB
Password
FTPUserName
FireWallBypass
Advertising
VirusTotal

47 out of 52 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
hackinsupremo.no-ip.biz 000.000.000.000
Geo Location
Yara Rules
Comments
comments powered by Disqus