Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-02-08 06:25:08
MD5 2c6ca3d47f3585da09a33196c531aaaf
Sha256 ac0e0d0c3af538890807fc512254a6e05f48450b0a90d65620c14544962465c8
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection svchost.exe
FTP Server ftp.ftpserver.com
Group O
Domain2 :0
Version 3.6 Private
Msg Box Title Erro
Mutex ((Mutex))
ID O
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name csrss.exe
Msg Box Text Ocorreu um erro inesperado ao iniciar o programa.
Install Dir WinUpdates
Domain1 faracha.hopto.org:4433
Domain5 :0
FTP UserName
HKLM HKLM
FTP Folder
Virustotal

64 out of 71 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG