Details
Malware Family Bozok
Date Added Jan. 30, 2016, 3 a.m.
MD5 a7a03b476118341ff01be82d1bddab21
Sha256 7695fdf4c071d8e241fd896ceb83d7250c09799523eb4ec450a283cf77b8822e
Robot Robots lovingly delivered by robohash.org
Config Sections
Domain 192.168.1.85*
InstallName taskhost.exe
Visible Flag 0
Extension ext.dat
Port 1515
Startup Flag 1
Mutex j5FDGlL7pfi4k
StartupName taskhost
ServerID TestServer
Password esi123
Unknown Flag1 0
Install Flag 1
Unknown Flag3 0
Unknown Flag2 0
Advertising
VirusTotal

44 out of 55 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
192.168.1.85 0
Geo Location
Yara Rules
Comments
comments powered by Disqus