Index of /publicDatasets/CTU-Malware-Capture-Botnet-248-1

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]mitm.out2017-04-18 14:54 22M 
[   ]2017-04-18_win18.rrd2017-04-18 14:59 8.0M 
[   ]2017-04-18_win18.pcap2017-04-18 15:13 66M 
[   ]2017-04-18_win18.dnstop2017-04-18 15:13 3.7K 
[   ]2017-04-18_win18.passivedns2017-04-18 15:13 4.5K 
[DIR]bro/2017-04-18 15:18 -  
[   ]2017-04-18_win18.capinfos2017-04-18 15:18 1.1K 
[   ]2017-04-18_win18.weblogng2017-04-18 15:18 522  
[   ]2017-04-18_win18.tcpdstat2017-04-18 15:18 1.6K 
[   ]2017-04-18_win18.biargus2017-04-18 15:18 18M 
[   ]2017-04-18_win18.binetflow2017-04-18 15:18 1.7M 
[TXT]fast-flux-dga-first-analysis.txt2017-04-18 15:18 2.5K 
[   ]f1d06663a626a7ad7a882f1ddf3734fd.zip2017-04-18 15:18 67K 
[TXT]README.md2017-04-18 16:40 2.3K 
[TXT]README.html2017-04-18 16:40 3.0K 
[   ]2017-04-18_win18.json2017-04-18 16:41 152K 
[TXT]2017-04-18_win18.html2017-04-18 16:41 422K 

Description

Files

IP Addresses

- Infected host: 192.168.1.128
- Default GW: 192.168.1.2

Timeline

Thu Mar 16 15:48:13 CET 2017

started win18

Thu Mar 16 15:52:03 CET 2017

infected

Tue Apr 18 14:58:11 CEST 2017

power off