Details
Malware Family Xtreme
Date Added Jan. 30, 2016, 3 a.m.
MD5 30dc54936c14216a77f686d8b9863a7f
Sha256 07a62cf518d3f86668bd5760b9e38ad8c15903219f510633d909b6c84c392cc7
Robot Robots lovingly delivered by robohash.org
Config Sections
Install Dir system32
Group Slaves
Msg Box Text Het programma zal starten in een paar seconden
FTP Password ftppass
Install Name dwm.exe
FTP Server ftp.ftpserver.com
FTP UserName ftpuser
Msg Box Title CyberL33t
Domain3 :0
Version 3.1
Mutex ND$9F2m
Domain5 :0
HKLM HKLM
Domain2 :0
ActiveX Key {116CS4H0-48SJ-078R-1865-P641V534WS80}
FTP Folder
Injection %DEFAULTBROWSER%
Domain4 :0
ID Dragona
Domain1 cyberl33t.dyndns.org:4523
HKCU HKCU
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
Geo Location
Yara Rules
Comments
comments powered by Disqus