Details
Robot
FileName
Malware Family Xtreme
Date Added 2016-01-30 03:00:03
MD5 dcfc3d519d7c16a0fca3eed47c8650d7
Sha256 79cd9d90d2bf1227a766e680fe69975724b49f40be654fcac8cd1a5720501cd4
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {2YGWRNA5-B15B-5NPE-7881-804L0RK1P5I1}
Injection notepad.exe
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.5 Private
Msg Box Title Error
Mutex TpyBoynq
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name Ad0obe.exe
Msg Box Text An unexpected error occurred when starting the program.
Install Dir Adobe
Domain1 2-hack.no-ip.biz:81
Domain5 :0
FTP UserName
HKLM HKLM
FTP Folder
Virustotal

0 out of 0 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net minalsn.ddns.net 46.172.120.225 RU