Details
Malware Family ClientMesh
Date Added Oct. 23, 2016, 6:25 a.m.
MD5 f8bae3bc60705c7a7bf815c58e0dbfc9
Sha256 0bc7827eac9a250710926ef1e4562f493f1f925a054b3fdb9ceca84e400d32f2
Robot Robots lovingly delivered by robohash.org
Config Sections
RegistryKey
Domain presrat.hopto.org
MsgBoxTitle
CampaignID infinite
RegistryPersistance 0
Startup 0
VisibleFlag 0
LocalKeyLogger 1
MsgBoxText
Unknown
MsgBoxFlag 0
Password
Port 1604
Advertising
VirusTotal

50 out of 57 AV's Identified the sample as Malicious

Virus Total Report

Domain Data
Domain IP Country Code
presrat.hopto.org 0
Geo Location
Yara Rules
Comments
comments powered by Disqus