Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-03-06 06:25:21
MD5 a76265517d5fe5dd9948892269d9d09f
Sha256 b4029c75b3f0dfbd085bedaee09ce071716caa1d761f5b6588387c5dcab74f0e
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection %DEFAULTBROWSER%
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.5 Private
Msg Box Title Error
Mutex ((Mutex))
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name Server.exe
Msg Box Text An unexpected error occurred when starting the program.
Install Dir InstallDir
Domain1 127.0.0.1:81
Domain5 :0
FTP UserName
HKLM HKLM
FTP Folder
Virustotal

66 out of 71 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG