| | Infection | Listen | Egg-download | Upload |
|---|
| 445 (100%) | 113 (93%)
3067 (92%) | 445 (97%)
1031 (58%)
1032 (42%) | 1031 (47%)
1032 (36%) |
|
| | Processes | Executables |
|---|
MSMSGS.EXE (100%)
random 5/6/7/8
character filename | ftpupd.exe (99%) |
|
| |
| 1:2000032 (99%)
1:2000033 (99%)
1:2466 (99%)
1:99913 (99%)
1:2001683 (99%)
555:5555005 (97%)full list |
|
| | FTP |
|---|
pass=1 (100%)
server=StnyFtpd 0wns j0 (100%)
user=1 (100%) |
|
| | MD5 | Antivirus labels | Domain |
|---|
7f6016... (66%)
042774... (6%)full list | korgo (99%)
padobot (99%)
ircbot (67%)
sdbot (67%)
lsabot (27%) | brussels.be.eu.undernet.o... (100%)
caen.fr.eu.undernet.org (100%)
flanders.be.eu.undernet.o... (100%)
gaspode.zanet.org.za (100%)
graz.at.eu.undernet.org (100%)
lia.zanet.net (100%)full list |
|