Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-02-08 06:25:08
MD5 039043e7c9c414aceea484c53919948d
Sha256 a87f73eba544cd106f7a3a4b95e1e56410f22af5c18dcd8f6c3cdc96bc046081
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection %DEFAULTBROWSER%
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.1
Msg Box Title Erro
Mutex ((Mutex))
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name servei.exe
Msg Box Text Ocorreu um erro inesperado ao iniciar o programa.
Install Dir InstallDir
Domain1 127.0.0.1:81
Domain5 :0
FTP UserName ftpuser
HKLM HKLM
FTP Folder
Virustotal

61 out of 72 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG