Index of /publicDatasets/CTU-Malware-Capture-Botnet-60

[ICO]NameLast modifiedSizeDescription

[PARENTDIR]Parent Directory  -  
[   ]4e96daddbd1ac1bebc124b090263ae49.exe.zip2015-12-16 10:26 596K 
[   ]2014-03-12_win20.dnstop2015-08-28 22:38 4.0K 
[TXT]2014-03-12_win20.html2015-04-09 15:16 1.0M 
[   ]2014-03-12_win20.json2015-04-09 15:16 1.3M 
[   ]2014-03-12_win20.passivedns2015-08-28 22:38 4.3K 
[   ]2014-03-12_win20.pcap2014-03-12 09:46 29M 
[   ]2014-03-12_win20.rrd2014-03-12 09:51 8.0M 
[   ]2014-03-12_win20.weblogng2016-06-15 17:55 13K 
[TXT]README.html2015-08-28 22:38 735  
[TXT]README.md2015-08-28 22:38 499  
[DIR]bro/2017-08-31 09:45 -  

Adware

Analysis

VirusTotal Link

Timeline

Sun Feb 23 12:25:27 CET 2014

started win20

Sun Feb 23 12:32:22 CET 2014

infected

wanted to install a fake 'vlc media player' click on ok click on download click on ok

uses IE

Wed Mar 12 09:51:38 CET 2014

poweroff win20. It did nothing appart of ipv6 on the last weeks.