Details
Malware Family SmallNet
Date Added Jan. 7, 2016, 11 p.m.
MD5 a94cfbb422f3348d82338921f05247f2
Sha256 9fd5b47486148f3ac850bfbc093c2b174cfc59cee064b6d4c1fffe7e37b9c4c6
Robot Robots lovingly delivered by robohash.org
Config Sections
Yahoo Spread 1
Anti-TiGeRFirewall 0
USB Spread 1
LAN Spread 1
Install Name ElMattadorDz
Thread Persistance 0
Attribute Hidden 0
Modified Creation Data 0
Anti-CurrentPorts 0
Install Server 0
P2P Spread 1
Enable MessageBox 0
MessageBox Title Hello And Welcome
MessageBox Message I Want To Play A Game !
Anti-VirtualBox 0
Attribute Compressed 0
Anti-TCPview 0
MSN Spread 0
ServerID Default
Disbale Registry 1
Anti-VmWare 0
Anti-ZoneAlarm 0
Attribute Read Only 0
Anti-Sandboxie 0
Disbale TaskManager 1
Anti-VirtualPC 0
MessageBox Icon 0
MessageBox Buttons 0
Registry Key Small-Net RAT
Disbale Firewall 1
Anti-RogueKiller 0
Attribute System File 0
Domain hailinhflp.zapto.org
Delay Execution MiliSeconds 1000
Attribute Archive 0
Disbale UAC 0
Attribute Temporary 0
Anti-Anubis 0
RAR Spread 1
Modify Creation Date 0
Anti-NetStat 0
Port 6789
Anti-SpyTheSpy 0
Advertising
VirusTotal

37 out of 54 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
hailinhflp.zapto.org 123.20.51.136 VN
Geo Location
Yara Rules
Comments
comments powered by Disqus