Details
Malware Family Xtreme
Date Added Feb. 8, 2019, 6:25 a.m.
MD5 3e42dd4b081ab5198a08828483754bec
Sha256 ac225cd709b391ebbdf6a7b881aa59a4d56921a37b1be51da8e17e4112434394
Robot Robots lovingly delivered by robohash.org
Config Sections
Install Dir InstallDir
Group Servers
Msg Box Text
FTP Password ftppass
Install Name Server.exe
FTP Server ftp.ftpserver.com
FTP UserName
Msg Box Title
Domain3 :0
Version 3.6 Private
Mutex 0eoMSk
Domain5 :0
HKLM HKLM
Domain2 :0
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
FTP Folder
Injection calc.exe
Domain4 :0
ID Server
Domain1 qwertyqwerty123.zapto.org:80
HKCU HKCU
Advertising
VirusTotal

61 out of 70 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
Geo Location
Yara Rules
Comments
comments powered by Disqus