Index of /publicDatasets/CTU-Malware-Capture-Botnet-113-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]2015-03-12_capture-win6.biargus2015-06-12 15:15 3.7M 
[   ]2015-03-12_capture-win6.binetflow2015-09-17 17:07 3.8M 
[   ]2015-03-12_capture-win6.capinfos2015-10-15 12:15 760  
[   ]2015-03-12_capture-win6.dnstop2015-10-15 12:15 1.8K 
[TXT]2015-03-12_capture-win6.html2015-04-09 13:19 19M 
[   ]2015-03-12_capture-win6.json2015-04-09 13:19 25M 
[   ]2015-03-12_capture-win6.passivedns2015-10-15 12:15 2.9K 
[   ]2015-03-12_capture-win6.pcap2015-03-28 22:11 16M 
[   ]2015-03-12_capture-win6.rrd2015-03-28 22:15 8.0M 
[   ]2015-03-12_capture-win6.tcpdstat2016-12-05 22:30 2.0K 
[   ]2015-03-12_capture-win6.uniargus2016-12-05 22:30 6.6M 
[   ]2015-03-12_capture-win6.uninetflow2016-12-05 22:30 3.1M 
[   ]2015-03-12_capture-win6.weblogng2016-06-15 17:43 867K 
[   ]148112df459ba40b9127f7d4f1c08df2.exe.zip2015-12-16 10:26 56K 
[TXT]README.html2017-01-15 13:04 720  
[TXT]README.md2015-06-12 14:59 449  
[DIR]bro/2017-08-31 09:45 -  
[TXT]fast-flux-dga-first-analysis.txt2017-01-15 13:04 2.5K 

Timeline

Thu Mar 12 10:54:33 CET 2015

started win6

Thu Mar 12 10:57:26 CET 2015

Infected

it worked. Probably Dridex

Sat Mar 28 22:00:11 CET 2015

there was an error on mar 26. I click on ok on the error.

Sat Mar 28 22:03:02 CET 2015

i rebooted to see if that helps getting the traffic again.

Sat Mar 28 22:15:39 CET 2015

since it did not come back, I stopped it.