Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-03-06 06:25:21
MD5 4e1e9d87335fa58873a3c79e09f06142
Sha256 f7bd3ea0035b60cc6a03735ab6edd11726a01fddb907be926962e5f942dc1fd8
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection %DEFAULTBROWSER%
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.1
Msg Box Title Erro
Mutex ((Mutex))
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name Server.exe
Msg Box Text Ocorreu um erro inesperado ao iniciar o programa.
Install Dir InstallDir
Domain1 crick20.ddns.net:3000
Domain5 :0
FTP UserName ftpuser
HKLM HKLM
FTP Folder
Virustotal

58 out of 68 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG