Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-03-06 06:25:21
MD5 23a4d6127ed4955d2a77874163b479df
Sha256 bff0420a0ea86f238692d2c9dfbc2bfc36b16ef2d1305026b349722a14332fc1
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {P7RT43G0-QR61-B31Y-HNBB-123G71B36P6W}
Injection svchost.exe
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.1
Msg Box Title Erro
Mutex EZ$e7
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name win32.exe
Msg Box Text Ocorreu um erro inesperado ao iniciar o programa.
Install Dir InstallDir
Domain1 predadorpontoexe.ddns.net:81
Domain5 :0
FTP UserName ftpuser
HKLM HKLM
FTP Folder
Virustotal

64 out of 71 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG