Index of /publicDatasets/CTU-Malware-Capture-Botnet-237-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]2017-3-30_win4.biargus2017-03-30 17:17 11M 
[   ]2017-3-30_win4.binetflow2017-03-30 17:17 5.4M 
[   ]2017-3-30_win4.capinfos2017-03-30 17:17 1.1K 
[TXT]2017-3-30_win4.csv2017-04-28 14:23 2.4M 
[   ]2017-3-30_win4.dnstop2017-03-30 17:13 20K 
[TXT]2017-3-30_win4.html2017-03-30 17:31 85M 
[   ]2017-3-30_win4.json2017-03-30 17:31 183M 
[   ]2017-3-30_win4.mitm.weblog2017-03-30 17:17 3.5M 
[   ]2017-3-30_win4.passivedns2017-03-30 17:13 165K 
[   ]2017-3-30_win4.pcap2017-03-30 17:13 272M 
[   ]2017-3-30_win4.rrd2017-03-30 17:06 8.0M 
[   ]2017-3-30_win4.tcpdstat2017-03-30 17:17 1.7K 
[   ]2017-3-30_win4.uniargus2017-03-30 17:17 62M 
[   ]2017-3-30_win4.uninetflow2017-03-30 17:17 30M 
[   ]2017-3-30_win4.weblogng2017-03-30 17:17 216K 
[TXT]README.html2017-03-30 17:31 3.0K 
[TXT]README.md2017-03-30 17:29 2.3K 
[DIR]bro/2017-03-30 17:17 -  
[   ]d0945f9a3409aee04b893ef1645c6075.zip2017-03-30 17:17 721K 
[TXT]fast-flux-dga-first-analysis.txt2017-03-30 17:17 44K 
[   ]mitm.out2017-03-30 17:08 74M 

Description

Files

IP Addresses

- Infected host: 192.168.1.114
- Default GW: 192.168.1.2

Timeline

Thu Mar 2 16:20:56 CET 2017

started win4

Thu Mar 2 16:23:33 CET 2017

infected

Thu Mar 30 17:06:38 CEST 2017

power off