Friday 18 January 2013

Andromeda bot


Come from a Keitaro TDS: http://urlquery.net/report.php?id=756624

 Lead on: ald-facebook.co.uk/operations/outer_band_remote.php
Payload: http://vxvault.siri-urz.net/ViriFiche.php?ID=22729

Andromeda 2.6, probably made by the Andromeda builder

Bots:

Blacklist:

Task:
output.exe is SpyEye, pass for config: FD0CCB937D91AD7355A4B072D91EB1B8
Second file is Sirefef CLSID edition.

Edit task:

Service:

Socks:

Formgrabber:
Nothing really interesting at all.


Posted by at 12:06
Labels: , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)