Index of /publicDatasets/CTU-Malware-Capture-Botnet-245-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[DIR]bro/2017-04-12 17:08 -  
[   ]2017-04-12_win12.capinfos2017-04-12 17:09 1.1K 
[   ]2017-04-12_win12.weblogng2017-04-12 17:09 1.3K 
[   ]2017-04-12_win12.tcpdstat2017-04-12 17:09 1.6K 
[TXT]README.md2017-04-12 17:19 2.3K 
[TXT]fast-flux-dga-first-analysis.txt2017-04-12 17:09 2.5K 
[TXT]README.html2017-04-12 17:09 3.0K 
[   ]2017-04-12_win12.dnstop2017-04-12 17:06 4.0K 
[   ]2017-04-12_win12.passivedns2017-04-12 17:06 12K 
[   ]mitm.out2017-04-06 16:11 59K 
[   ]06b3ebbe64157f122548d6c33673a413.zip2017-04-12 17:09 110K 
[   ]2017-04-12_win12.json2017-04-12 17:19 152K 
[TXT]2017-04-12_win12.html2017-04-12 17:19 422K 
[   ]2017-04-12_win12.binetflow2017-04-12 17:09 1.4M 
[   ]2017-04-12_win12.biargus2017-04-12 17:09 4.2M 
[   ]2017-04-12_win12.rrd2017-04-12 16:59 8.0M 
[   ]2017-04-12_win12.pcap2017-04-12 17:06 44M 

Description

Files

IP Addresses

- Infected host: 192.168.1.122
- Default GW: 192.168.1.2

Timeline

Thu Mar 16 14:50:57 CET 2017

started win12

Thu Mar 16 14:55:06 CET 2017

infected

Wed Apr 12 16:59:02 CEST 2017

power off