Index of /publicDatasets/CTU-Malware-Capture-Botnet-205-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]2016-12-02_win7.biargus2016-12-02 16:32 55M 
[   ]2016-12-02_win7.binetflow2016-12-02 16:32 36M 
[   ]2016-12-02_win7.capinfos2016-12-02 16:32 1.1K 
[   ]2016-12-02_win7.dnstop2016-12-02 16:29 22K 
[TXT]2016-12-02_win7.html2016-12-02 16:42 3.8M 
[   ]2016-12-02_win7.json2016-12-02 16:42 6.0M 
[   ]2016-12-02_win7.mitm.weblog2016-12-05 20:58 218K 
[   ]2016-12-02_win7.passivedns2016-12-02 16:29 33K 
[   ]2016-12-02_win7.pcap2016-12-02 16:22 357M 
[   ]2016-12-02_win7.rrd2016-12-02 16:22 8.0M 
[   ]2016-12-02_win7.tcpdstat2016-12-02 16:32 1.9K 
[   ]2016-12-02_win7.uniargus2016-12-02 16:33 429M 
[   ]2016-12-02_win7.uninetflow2016-12-02 16:34 294M 
[   ]2016-12-02_win7.weblogng2016-12-02 16:32 53K 
[TXT]README.html2017-01-13 14:03 2.3K 
[TXT]README.md2016-12-05 20:26 1.7K 
[DIR]bro/2017-08-31 09:45 -  
[TXT]fast-flux-dga-first-analysis.txt2017-01-13 14:03 71K 
[   ]mitm.out2016-10-09 01:17 7.3M 

Description

Files

IP Addresses

- Infected host: 192.168.1.117
- Default GW: 192.168.1.2

Timeline

Wed Oct 5 20:15:00 CEST 2016

started win7

Wed Oct 5 20:17:41 CEST 2016

try to infected. I didnt have the mitm up. Now is up

Wed Oct 5 20:18:57 CEST 2016

infected

(date here)

Fri Dec 2 16:22:09 CET 2016 power off