DarkComet RAT sample – DC_MUTEX-3TP2MMM

Are you searching for DarkComet RAT samples and mutexes?! Then stop your search and take a look at the “d0e689cd46215ce61aa7cad5184f0c03” RAT example which has been identified by us on “ 30-Sep-14”. 

The DarkComet RAT is often used by script kiddies and cyber criminals to control multiple infected computers at once via a DarkComet RAT graphical user interface.

The DarkComet RAT allows the operator to fully control an infected computer. This is the information which we were able to collect from the “d0e689cd46215ce61aa7cad5184f0c03 DarkComet RAT sample.

DarkComet RAT information which was identified on 30-Sep-14

MD5

 d0e689cd46215ce61aa7cad5184f0c03

SHA256

 4b0e0b0add966a824365a62ae8c72e2bf6517a7bd5f1197cf0fca07c09ab6877

FILESIZE

 371200

FILETYPE

 PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

DC-MUTEX

 DC_MUTEX-3TP2MMM

DOMAIN

 paullad14.no-ip.biz

IP

 80.111.202.24

DARKCOMET RAT

DarkComet RAT capabilities

The capabilities of DarkComet RAT allow the operator to start the following functions on the infected device (not a full list):

  • Microphone
  • Webcam
  • Visit website
  • Navigate through folder

Additional notes

We do not have additional information for this sample.

virustotal scan

SCAN WITH VIRUSTOTAL

https://www.virustotal.com/en/url/submission/?force=1&url=paullad14.no-ip.biz