Index of /publicDatasets/CTU-Malware-Capture-Botnet-246-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[DIR]bro/2017-04-17 19:30 -  
[   ]2017-04-17_win1.capinfos2017-04-17 19:30 1.1K 
[   ]2017-04-17_win1.weblogng2017-04-17 19:30 1.6K 
[   ]2017-04-17_win1.tcpdstat2017-04-17 19:30 1.7K 
[TXT]README.md2017-04-17 19:33 2.3K 
[TXT]fast-flux-dga-first-analysis.txt2017-04-17 19:31 2.5K 
[TXT]README.html2017-04-17 19:33 3.0K 
[   ]2017-04-17_win1.dnstop2017-04-17 19:26 5.0K 
[   ]2017-04-17_win1.passivedns2017-04-17 19:26 12K 
[   ]326d9bf458c589d7988886d111b6933db21efc950bfa1b44b1814c9dfdcb674b.zip2017-04-17 19:31 82K 
[   ]2017-04-17_win1.json2017-04-17 19:34 152K 
[TXT]2017-04-17_win1.html2017-04-17 19:34 422K 
[   ]2017-04-17_win1.binetflow2017-04-17 19:30 2.1M 
[   ]2017-04-17_win1.rrd2017-04-17 19:19 8.0M 
[   ]mitm.out2017-04-17 19:15 13M 
[   ]2017-04-17_win1.biargus2017-04-17 19:30 21M 
[   ]2017-04-17_win1.pcap2017-04-17 19:26 68M 

Description

Files

IP Addresses

- Infected host: 192.168.1.110
- Default GW: 192.168.1.2

Timeline

Wed Mar 15 19:16:25 CET 2017

started winX

Wed Mar 15 19:19:02 CET 2017

infected

Mon Apr 17 19:17:15 CEST 2017

power off