Details
Robot
FileName
Malware Family Xtreme
Date Added 2019-03-06 06:25:21
MD5 f95f5a96bd8f157d22a3e2bad3320dbc
Sha256 9510bd123a7de91e437f5cb54f32c67721c7fd2d077311547fc872d4ff33ffa7
Robot Robots lovingly delivered by robohash.org
Advertising
C2 Data
HKCU HKCU
ActiveX Key {5460C4DF-B266-909E-CB58-E32B79832EB2}
Injection %DEFAULTBROWSER%
FTP Server ftp.ftpserver.com
Group Servers
Domain2 :0
Version 3.1
Msg Box Title Erro
Mutex ((Mutex))
ID Server
Domain3 :0
FTP Password ftppass
Domain4 :0
Install Name Server.exe
Msg Box Text Ocorreu um erro inesperado ao iniciar o programa.
Install Dir InstallDir
Domain1 crick20.ddns.net:3000
Domain5 :0
FTP UserName ftpuser
HKLM HKLM
FTP Folder
Virustotal

62 out of 70 AV Engines identified the sample as Malicious.

Virustotal Report

C2 Information
Domain FQDN IP Country Code
ddns.net cometdb.ddns.net 128.199.50.200 SG