Details
FileName | |
---|---|
Malware Family | Xtreme |
Date Added | 2016-01-26 03:00:03 |
MD5 | 84a464a95774293fa71e66fa5ede064b |
Sha256 | ce555de3e4d7ca8005529b3f72efeb5f52f197094a329aa41ade1b9f50bbeb46 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
Install Dir | InstallDir |
---|---|
FTP Server | ftp.ftpserver.com |
Domain18 | :0 |
Domain2 | :0 |
Custom Reg Value | Server |
Domain15 | :0 |
Domain8 | :0 |
Custom Reg Key | HKCU\Software\Microsoft\Windows\CurrentVersion\Run |
Domain3 | :0 |
Domain17 | :0 |
Domain5 | :0 |
Domain1 | h10mm.no-ip.info:81 |
Domain9 | :0 |
Domain13 | :0 |
HKLM | KLM |
FTP Folder | |
Domain6 | :0 |
Domain12 | :0 |
Custom Reg Name | HKCU |
ActiveX Key | {EE77XN8W-6B3S-26GS-5N41-SW8804QV8D18} |
Injection | %DEFAULTBROWSER% |
Domain14 | :0 |
Group | Servers |
Domain19 | :0 |
Install Name | Server.exe |
Domain20 | :0 |
Version | 2.9 |
Mutex | --((Mutex))-- |
HKCU | HKCU |
FTP Password | |
Domain10 | :0 |
Domain11 | :0 |
ID | Server |
Domain16 | :0 |
FTP UserName | ftpuser |
Domain4 | :0 |
Domain7 | :0 |
Virustotal
0 out of 0 AV Engines identified the sample as Malicious.