This is a text field
This is a text field
This is a text field
This is a text field

How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

 

How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

Have you ever been infected with a virus and wanted to backtrace DarkComet? Want to locate the hacker behind the virus, which in most cases is a RAT? Well, if the attacker used DarkComet, one of the most common Remote Administration Tools available, then this guide will help you backtrace DarkComet. You will be able to find the attackers IP address or hostname as well as his password. Once you have done this, you can report them to the proper authorities. Best people to contact would be the DNS host or web host the hacker used.

Backtrace DarkComet to Find the Hacker

The coder of the infamous and widely used DarkComet DarkCoderSc went whitehat after years of his DarkComet release. After he had gone white hat, he released a tool that would allow you to backtrace someone with an unencrypted DC RAT infection/server.

You can download it from here: https://mega.co.nz/#!apkmECqb!K2C5bFYIYoQYydaNV74n6kN9lMf5v9VRvSv_1t5qeLU

Here is the Virus Total Scan: https://www.virustotal.com/en/file/9d347e99be65d5a7d40d551676be1546519cdfdc853c947ef065ec64e6e8fb83/analysis/1425314491/

How to backtrace an IP and password of a DarkComet Hacker with this tool:

DarkComet 5.1 and newer (includes the latest v5.3.1)
Select the first record in the combo box, click the Load/Extract button and locate the server.

DarkComet 5.0
Select the second record in the combo box, click the Load/Extract button and locate the server.

DarkComet 4.2F
Manually add the string “#KCMDDC42F#-” (without quotes) in the combo box, click the Load/Extract button and locate the server.

DarkComet 4.2
Manually add the string “#KCMDDC42#-” (without quotes) in the combo box, click the Load/Extract button and locate the server.

DarkComet 4.0 and DarkComet 4.1
Manually add the string “#KCMDDC4#-” (without quotes) in the combo box, click the Load/Extract button and locate the server.

DarkComet 2.x to DarkComet 3.x
Manually add the string “#KCMDDC2#-” (without quotes) to the combo box, click the Load/Extract button and locate the server.

How to Backtrace DarkComet to Find the Hacker Behind the RAT

How to Backtrace DarkComet to Find the Hacker Behind the RAT

Note: If you wish to remove DarkComet or BlackShades RATs instead of backtracing them or using an antivirus, you can do so with these removers, even if the files are undetected by antivirus: https://www.phrozensoft.com/removers.html

We highly recommend that after you backtrace DarkComet and get rid of the infection that you run a thorough virus scan on your PC.