Index of /publicDatasets/CTU-Malware-Capture-Botnet-191-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]2016-09-29_capture_win11.biargus2016-10-14 11:38 887M 
[   ]2016-09-29_capture_win11.binetflow2016-10-14 11:40 566M 
[   ]2016-09-29_capture_win11.binetflow.xz2016-10-14 11:40 59M 
[   ]2016-09-29_capture_win11.capinfos2016-09-29 22:05 1.1K 
[   ]2016-09-29_capture_win11.dnstop2016-09-29 21:01 5.9K 
[TXT]2016-09-29_capture_win11.html2016-09-30 20:18 353K 
[   ]2016-09-29_capture_win11.json2016-09-30 20:18 3.6K 
[   ]2016-09-29_capture_win11.mitm.weblog2016-12-05 22:12 778M 
[   ]2016-09-29_capture_win11.passivedns2016-09-29 21:03 2.5K 
[   ]2016-09-29_capture_win11.pcap2016-09-29 20:36 10G 
[   ]2016-09-29_capture_win11.tcpdstat2016-09-29 22:10 2.0K 
[   ]2016-09-29_capture_win11.uniargus2016-10-14 11:42 1.8G 
[   ]2016-09-29_capture_win11.uninetflow2016-10-14 11:45 1.5G 
[   ]2016-09-29_capture_win11.weblogng2016-09-29 22:09 1.1G 
[   ]2016-09-29_win11.rdd2016-09-29 20:40 8.0M 
[TXT]README.html2017-01-13 14:09 1.8K 
[TXT]README.md2016-09-30 20:07 1.2K 
[DIR]bro/2017-08-31 09:45 -  
[   ]d7f3de700b99d3d03c5cd2309b635738.exe.zip2016-09-29 20:59 7.1K 
[TXT]fast-flux-dga-first-analysis.txt2017-01-13 14:09 3.2K 
[   ]mitm.out2016-09-29 20:41 7.3G 

Description

Files

IP Addresses

- Infected host: 192.168.1.121
- Default GW: 192.168.1.2

Timeline

Fri Sep 9 16:59:23 CEST 2016

started win11

Fri Sep 9 17:12:14 CEST 2016

infected

Thu Sep 29 20:36:40 CEST 2016

power off