Index of /publicDatasets/CTU-Malware-Capture-Botnet-118-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]2015-04-20_capture-win5.biargus2015-04-20 11:43 109K 
[   ]2015-04-20_capture-win5.binetflow2015-09-17 16:22 124K 
[   ]2015-04-20_capture-win5.capinfos2016-05-28 12:43 762  
[   ]2015-04-20_capture-win5.dnstop2016-05-28 12:43 3.0K 
[TXT]2015-04-20_capture-win5.html2015-04-20 11:33 1.0M 
[   ]2015-04-20_capture-win5.json2015-04-20 11:33 1.5M 
[   ]2015-04-20_capture-win5.passivedns2016-05-28 12:43 2.0K 
[   ]2015-04-20_capture-win5.pcap2015-04-20 11:29 2.1M 
[   ]2015-04-20_capture-win5.rrd2015-04-20 11:32 8.0M 
[   ]2015-04-20_capture-win5.tcpdstat2016-12-05 22:30 1.8K 
[   ]2015-04-20_capture-win5.uniargus2016-12-05 22:30 1.0M 
[   ]2015-04-20_capture-win5.uninetflow2016-12-05 22:30 707K 
[   ]2015-04-20_capture-win5.weblogng2016-06-15 17:53 1.2K 
[   ]6093329dbda17782bb8dc31cf223a188.exe.zip2015-12-16 10:26 15K 
[TXT]README.html2017-01-15 13:04 1.1K 
[TXT]README.md2016-05-28 12:45 835  
[DIR]bro/2017-08-31 09:45 -  
[TXT]fast-flux-dga-first-analysis.txt2017-01-15 13:04 5.8K 

Description

Timeline

Mon Apr 13 13:45:48 CEST 2015

start win5

Mon Apr 13 13:47:27 CEST 2015

infected with 6093329dbda17782bb8dc31cf223a188.exe

It worked perfectly.

After the first downloades it did nothing else

Mon Apr 20 11:29:35 CEST 2015

Power off win 5