Details
Malware Family Bozok
Date Added Aug. 5, 2015, 12:59 a.m.
MD5 66b47eedab61c7708c7b6353283e031a
Sha256 1c64d753a21b28d935954b5f02a7b4c9b73c9febe03cc9329391e61fba484408
Robot Robots lovingly delivered by robohash.org
Config Sections
Domain 182.216.19.194*
InstallName server.exe
Visible Flag 0
Extension ext.dat
Port 1515
Startup Flag 0
Mutex RxnPaGV7dkhNT
StartupName
ServerID gh1635
Password mypass
Unknown Flag1 0
Install Flag 1
Unknown Flag3 0
Unknown Flag2 0
Advertising
VirusTotal

40 out of 55 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
182.216.19.194 KR
Geo Location
Yara Rules
Comments
comments powered by Disqus