Details
Malware Family Xtreme
Date Added March 23, 2015, 8:29 p.m.
MD5 19ff362a56a5647470db0085982fcaad
Sha256 cd6974d223518f60dcfa2510ed2d0d5065185ac33b648749ef1836ad86d653c4
Robot Robots lovingly delivered by robohash.org
Config Sections
Domain4 :0
Install Dir Fonts
Group Servers
Msg Box Text Anunexpectederroroccurredwhenstartingtheprogram.
FTP Password ftppass
Install Name ctfmon.exe
FTP Server ftp.ftpserver.com
FTP UserName ftpuser
ID SeXY
Domain3 :0
Version 3.2
Mutex zWmp8zb
HKLM HKLM
ActiveX Key {G55DPWQM-6S05-1UXJ-7431-66XDEBSJ8AGQ}
Domain2 saralolo.no-ip.org:7918
Domain1 saralolo.no-ip.org:7041
HKCU HKCU
FTP Folder
Injection %NOINJECT%
Domain5 :0
Msg Box Title Error
Advertising
VirusTotal

47 out of 53 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
saralolo.no-ip.org 37.237.115.206 IQ
Geo Location
Yara Rules
Comments
comments powered by Disqus