Details
FileName | |
---|---|
Malware Family | Xtreme |
Date Added | 2016-01-26 03:00:03 |
MD5 | 7eb38dd1eff9df3734a6d508f0c47270 |
Sha256 | 71dd738bda5e6b669c1d57a132d602c4e4de05444816a906e9f35321230ecb87 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
Install Dir | InstallDir |
---|---|
FTP Server | ftp.ftpserver.com |
Domain18 | :0 |
Domain2 | :0 |
Custom Reg Value | l |
Domain15 | :0 |
Domain8 | :0 |
Custom Reg Key | HKCU\Software\Microsoft\Windows\CurrentVersion\Run |
Domain3 | :0 |
Domain17 | :0 |
Domain5 | :0 |
Domain1 | hackerbnc.no-ip.biz:82 |
Domain9 | :0 |
Domain13 | :0 |
HKLM | KLM |
FTP Folder | |
Domain6 | :0 |
Domain12 | :0 |
Custom Reg Name | HKCU |
ActiveX Key | {L4OI62O4-0SUF-FFE8-08B6-0O3615DA48B2} |
Injection | %DEFAULTBROWSER% |
Domain14 | :0 |
Group | Servers |
Domain19 | :0 |
Install Name | Server.exe |
Domain20 | :0 |
Version | 2.9 |
Mutex | Mudbli0 |
HKCU | HKCU |
FTP Password | |
Domain10 | :0 |
Domain11 | :0 |
ID | server do vagner |
Domain16 | :0 |
FTP UserName | ftpuser |
Domain4 | :0 |
Domain7 | :0 |
Virustotal
0 out of 0 AV Engines identified the sample as Malicious.