Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-02-08 06:25:08
MD5 cb0678fa5595b20c7d1fa0238125fe44
Sha256 71d3596314d69bbd98f0fc41ba75722337708c108f1557c43bc9b8a73f932e2e
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection %DEFAULTBROWSER%
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.1
Msg Box Title Malware
Mutex ((Mutex))
ID Hack
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name Hack.exe
Msg Box Text Seu pc foi infectado com o virus "hackdepointblank.exe"
Install Dir InstallDir
Domain1 joaozinhohost.ddns.net:8733
Domain5 :0
FTP UserName ftpuser
HKLM HKLM
FTP Folder
Virustotal

61 out of 71 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG