DarkComet is a backdoor Trojan or RAT that enables remote hackers to spy on your computer's keyboard input or webcam, steal files or download malicious files onto the PC. Because DarkComet is updated on a regular basis and sold to a variety of potential hackers, SpywareRemove.com malware research team emphasizes the necessity of keeping your security software updated to allow them to detect and remove DarkComet, which may not show many or even any symptoms of its attacks. In 2012, DarkComet has achieved a significant amount of international attention due to being employed in the Syrian war effort, which many believe to be a response to the increased usage of social networking tools by the Syrian opposition. However, DarkComet can also be employed for other purposes and should always be considered a high-level threat to your PC until DarkComet is eliminated by some form of appropriate anti-malware software.
DarkComet – an Omen of Information Theft and Security Bypasses
DarkComet is sold at darkcomet-rat.com and similar criminal websites as a spyware product that can steal information from computers without being noticed, typically for completely illegal purposes. DarkComet's coder, dubbed DarkCoderSc, has released at least five separate versions of DarkComet, and SpywareRemove.com malware researchers recommend that you update your anti-malware software, if applicable, before you make any attempt to scan for or delete DarkComet. Variants of DarkComet may be detected by different names, such as BKDR_BREUT.A or BKDR_ZAPCHAST.SG, and different versions of DarkComet can vary their behavior in minor ways. However, the primary purpose of any type of DarkComet-based Trojan always is to compromise your computer's security and steal personal information.
Besides its recent usage in Syria's armed conflict, DarkComet has also achieved attention from SpywareRemove.com malware analysts via its distribution through instant messengers, especially Skype. In most cases, DarkComet will be disguised as another type of application, and may even be installed next to a fake program file that's intended to divert your attention away from DarkComet. You should take special care around file downloads that use Facebook icons, as DarkComet has been found to do in some instances.
A Scan Through DarkComet's Potential Damage Report
With semi-regular updates, multiple variants and a host of features that can be bent towards many types of attacks, DarkComet may show diversions in its attacks from what's noted below. However, SpywareRemove.com malware researchers have found that the most in-demand and widely-used functions of DarkComet include:
- Keylogging functionality that allows DarkComet to record keyboard input to a log file.
- Monitoring of A/V utilities such as webcams and microphones.
- Two-way file transferal features that allow DarkComet to upload personal information to remote servers or install malicious files onto your PC.
Of course, like all types of backdoor Trojans, DarkComet will automatically try to bypass your security software and settings in order to accomplish these attacks.
Use SpyHunter to Detect and Remove PC Threats
If you are concerned that malware or PC threats similar to DarkComet may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.
Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.
File System Modifications
The following files were created in the system:
file.exeFile name: file.exe
Size: 395.77 KB (395776 bytes)
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: March 12, 2012