Overview

overview

1

Static

static

1

misc.vbs

windows7-x64

1

misc.vbs

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Urx.SYM+ASN.rar

  • Size

    172KB

  • MD5

    eb14beaa111df581ff7b4a30e3b9fdfd

  • SHA1

    57d61b299cf0831b547a01abe53da9f87b038b11

  • SHA256

    9fa149010169d195865b70aefbcfac5856d950f21223b77fe1b2cb9cf46388a4

  • SHA512

    23c5b58160f7d8cd51e568c7719ca886466c88d6e20c0e574e27bffb89f5a2dc820d310be2173179fe7401825f692ae652fb505e6cecff6b1fee0cc7c2d5814c

  • SSDEEP

    3072:m50L+/TZSjrxJ7qg/x93HFC/BsrCJDulHGEkjTKFgjEVCDNokY9qZOyqXfhZmTTb:mucs7qg/z3w//41GtnD2PqZ0XmT0iR8K

Score
1/10

Malware Config

Signatures

Files

  • Urx.SYM+ASN.rar
    .rar

    Password: infected

  • advscan.cpp
  • advscan.h
  • aliaslog.cpp
  • aliaslog.h
  • autostart.cpp
  • autostart.h
  • avirus.cpp
  • avirus.h
  • capture.cpp
  • capture.h
  • cdkeys.cpp
  • cdkeys.h
  • configs.h
  • crc32.cpp
  • crc32.h
  • crypt.cpp
  • crypt.h
  • dcc.cpp
  • dcc.h
  • dcom.cpp
  • dcom.h
  • dcom2.cpp
  • dcom2.h
  • ddos.cpp
  • ddos.h
  • defines.h
  • download.cpp
  • download.h
  • driveinfo.cpp
  • driveinfo.h
  • ehandler.cpp
  • ehandler.h
  • externs.h
  • findfile.cpp
  • findfile.h
  • findpass.cpp
  • findpass.h
  • fphost.cpp
  • fphost.h
  • ftpd.cpp
  • ftpd.h
  • functions.h
  • globals.h
  • httpd.cpp
  • httpd.h
  • icmpflood.cpp
  • icmpflood.h
  • ident.cpp
  • ident.h
  • iis5ssl.cpp
  • iis5ssl.h
  • includes.h
  • irc_send.cpp
  • irc_send.h
  • keylogger.cpp
  • keylogger.h
  • loaddlls.cpp
  • loaddlls.h
  • lsass.cpp
  • lsass.h
  • misc.cpp
    .vbs
  • misc.h
  • ms04_007_asn1.cpp
  • ms04_007_asn1.h
  • mssql.cpp
  • mssql.h
  • net.cpp
  • net.h
  • netutils.cpp
  • netutils.h
  • nicklist.h
  • passwd.h
  • peer2peer.cpp
  • peer2peer.h
  • pingudp.cpp
  • pingudp.h
  • processes.cpp
  • processes.h
  • psniff.cpp
  • psniff.h
  • rBot.cpp
  • rBot.dsp
  • rBot.dsw
  • rBot.h
  • redirect.cpp
  • redirect.h
  • remotecmd.cpp
  • remotecmd.h
  • rlogind.cpp
  • rlogind.h
  • rndnick.cpp
  • rndnick.h
  • sasser.cpp
  • scan.cpp
  • scan.h
  • secure.cpp
  • secure.h
  • session.cpp
  • session.h
  • shellcode.cpp
  • shellcode.h
  • socks4.cpp
  • socks4.h
  • sym.cpp
  • sym.h
  • synflood.cpp
  • synflood.h
  • sysinfo.cpp
  • sysinfo.h
  • tcpflood.cpp
  • tcpflood.h
  • tcpflood2.cpp
  • tcpflood2.h
  • tcpip.h
  • tftpd.cpp
  • tftpd.h
  • threads.cpp
  • threads.h
  • visit.cpp
  • visit.h
  • wildcard.cpp
  • wildcard.h
  • workstation.cpp
  • workstation.h