Details
Malware Family Bozok
Date Added April 14, 2016, 6:52 a.m.
MD5 cb2b02fac221a59c04a4b6a815e386c4
Sha256 40d60162a095d985169a17812eaef9c04154fda40f61c603cdd1ddaf933f5fb6
Robot Robots lovingly delivered by robohash.org
Config Sections
Domain seggfaszi.duckdns.org*
InstallName server.exe
Visible Flag 0
Extension ext30.dat
Port 1607
Startup Flag 0
Mutex 8UEIFZvJcNfwd
StartupName
ServerID Boson
Password mypass
Unknown Flag1 0
Install Flag 0
Unknown Flag3 0
Unknown Flag2 0
Advertising
VirusTotal

38 out of 57 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
seggfaszi.duckdns.org 158.255.214.44 DE
Geo Location
Yara Rules
Comments
comments powered by Disqus