Details
Malware Family PredatorPain
Date Added May 25, 2016, 3 a.m.
MD5 c3564cf4b0455ffab930884b3e81626b
Sha256 6e4fa5f776b899d3d3d0cc1da69ff6165aefafd46f70ddb55399c73ba6f965cd
Robot Robots lovingly delivered by robohash.org
Config Sections
Use Email noemail
Email Address e-mail@host.com
Bound Files False
SMTP Port 587
FTP Pass password
SMTP Server smtp.host.com
FTP Host ftp.host.com
Interval Timer 600000
PHP Link http://www.DeceptiveEngineering.com/path/logs.php
Version Predator Pain v13
Download & Exec downloadfiles
FTP User username
Use FTP noftp
Use PHP yesphp
Email Password password
Advertising
VirusTotal

47 out of 56 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
Geo Location
Yara Rules
Comments
comments powered by Disqus