Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-03-06 06:25:21
MD5 1b087a185cf42a6fbff36dd22fbbe81d
Sha256 69fc919d1d228f09857b769f6f33560da2bcd7215056675f7f7952c22819e52f
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection %DEFAULTBROWSER%
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.1
Msg Box Title Error
Mutex ((Mutex))
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name Server.exe
Msg Box Text An unexpected error occurred when starting the program.
Install Dir InstallDir
Domain1 127.0.0.1:81
Domain5 :0
FTP UserName ftpuser
HKLM HKLM
FTP Folder
Virustotal

59 out of 70 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG