Technical Information
Malicious functions:
Removes itself
Launches itself as a daemon
Substitutes application name for:
- vvgkuuuiwkkzvk
Performs operations with the file system:
Creates or modifies files:
- <SAMPLE_FULL_PATH>
Network activity:
Awaits incoming connections on ports:
- 127.0.0.1:8888
Establishes connection:
- 8.#.8.8:53
- 18#.##.138.97:2231
HTTP GET requests:
- http://###.##.78.98login.cgi
Sends data to the following servers:
- 19#.##.117.206:80
- 75.###.227.74:80
- 52.###.244.35:8080
- 38.###.109.3:8080
- 23#.###.244.193:9997
- 87.###.237.55:80
- 36.###.153.51:82
- 20#.##.78.32:8090
- 64.##.165.52:8181
- 91.###.140.13:80
- 82.###.202.200:81
- 96.#.68.237:81
- 22.###.99.137:443
- 12#.##8.112.45:80
- 12#.##5.51.121:81
- 34.##.220.191:8081
- 30.#.#27.239:8181
- 17#.##9.127.120:82
- 68.##.210.113:8080
- 10#.##.1.133:8081
- 17#.###.121.248:9997
- 86.###.148.233:443
- 10#.##3.167.111:443
- 24#.###.241.144:8090
- 41.###.33.138:8090
- 21#.##0.213.65:8080
- 17#.##0.44.225:81
- 14#.##6.26.85:443
- 89.###.17.136:80
- 10#.##.7.22:8090
- 22.##.205.89:9997
- 18#.##3.77.4:8090
- 23#.#8.81.90:80
- 72.###.206.194:8181
- 73.###.198.234:8080
- 98.###.16.135:8181
- 16#.##3.205.55:8081
- 23#.##3.210.197:80
- 80.##.171.69:8081
- 20#.##3.224.123:82
- 24#.##3.176.37:8090
- 15#.##1.196.111:80
- 38.##.187.0:8181
- 19#.##0.190.248:82
- 67.###.47.225:8080
- 8.###.176.122:81
- 18#.##.138.97:2231
- 79.##.22.46:443
- 11#.##8.233.132:82
- 11#.##.236.41:8080
- 18#.###.119.227:8081
- 13#.##2.14.53:8081
- 22#.###.220.149:8081
- 20#.##7.77.59:9997
- 13#.##.120.39:8081
- 16#.##3.195.212:81
- 23#.##3.163.86:8080
- 17#.##4.53.85:81
- 66.###.247.115:82
- 12#.##3.245.180:82
- 13#.#.39.6:8090
- 51.###.71.117:8081
- 49.###.193.210:8181
- 75.##.5.211:80
- 24#.##3.211.45:9997
- 15#.##.25.190:8181
- 94.##.21.89:80
- 71.###.97.85:9997
- 93.###.46.171:8090
- 17#.##.196.178:80
- 13.##.189.33:8181
- 10#.##9.41.164:82
- 29.##.48.164:8090
- 23#.#4.44.32:82
- 20#.##.80.41:9997
- 14#.##8.31.64:82
- 20.###.163.89:9997
- 15.###.103.166:8080
- 10#.##6.14.83:443
- 15#.###.153.154:8181
- 20#.#1.66.44:82
- 21#.###.241.246:9997
- 24#.#8.83.62:81
- 12#.###.113.169:8081
- 11#.##9.228.227:80
- 15#.###.181.172:8081
- 21#.###.200.149:8080
- 70.###.140.150:82
- 20#.##.171.114:8090
- 11#.###.117.246:8181
- 10#.##.30.218:8081
- 22.##.170.54:8181
- 10#.##7.106.91:8181
- 17#.##9.61.177:8181
- 14#.##.163.239:443
- 2.##.#30.60:8080
- 22#.##5.116.123:80
- 24#.##.225.87:8080
- 96.##.206.6:8080
- 25#.##3.73.8:8080
- 64.###.184.174:8090
- 11#.#5.20.47:82
- 20#.##2.137.59:8090
- 7.###.66.110:8181
- 11#.##6.76.83:82
- 17#.##2.0.74:8181
- 21#.##2.159.174:82
- 17#.##3.113.48:8080
- 19#.##1.231.133:80
- 13#.##.24.229:8081
- 15#.###.180.221:8090
- 24#.##.113.185:8181
- 12#.##.90.201:8080
- 29.##.243.19:8080
- 17#.##.193.127:8081
- 25#.##9.153.88:81
- 16.###.110.222:82
- 17#.##2.198.90:443
- 41.###.146.232:81
- 15#.#.178.45:8181
- 63.###.211.209:8090
- 19#.##3.82.76:8090
- 48.#.#60.30:9997
- 56.###.213.236:9997
- 19#.##.240.154:443
- 23#.##1.200.143:81
- 51.##.100.96:8181
- 39.###.3.234:8080
- 16#.###.217.210:9997
- 17#.##.129.32:8080
- 93.###.162.132:8081
- 36.###.179.227:82
- 82.###.179.39:80
- 24#.##7.246.37:8081
- 18#.##1.120.59:8181
- 23#.##.187.232:80
- 76.###.248.52:443
- 12#.##1.74.206:8090
- 56.###.4.228:8081
- 24.###.203.178:443
- 14#.##3.22.38:443
- 31.###.57.33:8090
- 17#.#.64.78:82
- 1.##.#8.220:8080
- 68.###.223.86:8090
- 24#.##9.152.172:82
- 1.##.253.209:80
- 21#.##.33.56:8080
- 71.###.116.160:82
- 80.##.210.59:82
- 10#.##6.49.131:82
- 43.###.173.94:82
- 22#.###.147.251:8080
- 78.###.151.200:8080
- 22.###.116.187:8081
- 50.##.88.179:8181
- 21#.##5.204.226:443
- 33.###.62.217:82
- 12#.###.116.165:8090
- 30.###.30.185:8080
- 14#.##.80.167:82
- 22#.###.101.170:8081
- 24#.##.115.114:81
- 18#.##.234.208:82
- 14#.###.154.204:8080
- 20#.##1.173.20:8181
- 16#.##7.87.51:81
- 21#.##.205.147:82
- 28.##9.54.78:82
- 21#.##.177.217:82
- 97.##.248.120:82
- 21#.##.240.31:8080
- 16#.##1.66.211:8181
- 15#.##.61.35:9997
- 22#.##3.80.78:8090
- 18#.##9.112.195:443
- 96.###.34.55:8090
- 20#.#.225.51:8081
- 53.###.37.120:80
- 15#.##.208.20:8081
- 21#.##3.181.3:80
- 15#.##2.6.225:8081
- 20#.##.65.199:81
- 13#.##0.98.74:8080
- 10#.##1.130.53:443
- 40.##.60.159:82
- 39.###.133.124:80
- 21#.##.26.232:8181
- 21#.##.147.146:80
- 52.##.34.196:8081
- 23.###.186.239:8080
- 17#.##2.83.12:443
- 15#.##.103.223:82
- 40.###.221.166:9997
- 22#.##8.24.202:82
- 12#.###.176.138:8081
- 65.###.230.69:8090
- 21#.##1.4.213:8181
- 24#.##.180.212:8081
- 65.##.72.232:8181
- 69.###.217.187:9997
- 47.##8.97.91:82
- 18#.##.65.45:8181
- 47.##.78.11:82
- 13#.##2.128.45:8090
- 25.##.241.198:8081
- 13#.##2.52.168:9997
- 17#.##5.137.40:8080
- 19#.##4.42.14:81
- 89.###.71.149:9997
- 22#.##4.27.193:443
- 15#.#.119.97:81
- 16#.##5.33.1:8090
- 18#.##2.42.114:8090
- 18#.##.225.66:9997
- 40.###.211.236:9997
- 18#.#.8.101:82
- 12#.###.127.164:8081
- 13#.#40.5.43:80
- 15#.##.111.226:8080
- 22#.##.199.119:9997
- 29.###.88.164:8081
- 14#.##.184.177:8080
- 53.###.236.130:81
- 16#.#17.2.45:81
- 22#.##1.74.24:8181
- 55.###.206.209:443
- 14#.##6.63.220:81
- 61.###.122.164:8181
- 37.##.81.23:8081
- 25#.##0.244.117:80
- 69.###.197.45:80
- 17#.##9.69.167:9997
- 22.##4.4.0:8080
- 55.###.137.75:443
- 15#.##1.67.184:82
- 33.##.75.125:8081
- 19.#.28.59:8090
- 22#.###.223.142:8081
- 44.###.133.53:82
- 25.##.105.62:80
- 20#.##.242.97:81
- 10.##.166.181:80
- 15#.##.155.186:9997
- 20#.##.200.36:8181
- 66.###.89.164:8080
- 4.###.59.62:80
- 19#.##8.160.252:82
- 24#.#60.2.44:80
- 61.##.21.128:8080
- 72.##0.91.71:82
- 3.##.140.100:80
- 19#.###.114.169:8090
- 15#.##7.50.141:443
- 22#.##9.127.51:82
- 21#.##.119.98:8090
- 23#.##0.41.113:81
- 16#.##6.85.245:8181
- 82.###.174.118:443
- 29.##.124.199:81
- 11#.##.87.102:8081
- 26.###.17.150:8181
- 23#.#9.17.14:81
- 59.##.85.190:82
- 15#.##.152.182:8081
- 27.##.32.225:8080
- 13#.##.148.232:8081
- 12#.##.133.220:9997
- 22#.##3.249.119:80
- 11#.##6.197.111:81
- 13#.##3.45.157:8081
- 25#.##2.206.232:443
- 17#.##.51.102:82
- 51.##5.55.79:80
- 4.##.98.125:82
- 14#.#.224.194:8090
- 12.##.36.195:8181
- 48.##.247.121:81
- 16#.##.189.221:81
- 12#.##.119.150:8081
- 15.##.218.243:8090
- 19#.#33.9.51:80
- 15#.##.55.61:9997
- 19#.##8.37.155:8080
- 12#.##.117.15:9997
- 12#.##.160.161:81
- 43.##.236.31:8181
- 22.##.182.187:82
- 34.##.67.83:8090
- 46.###.93.173:8080
- 38.##.182.217:8090
- 22#.##5.47.185:80
- 10#.#6.26.30:80
- 25#.##.254.158:8081
- 14#.##.132.100:81
- 21#.##.106.159:9997
- 14#.##.59.184:82
- 16#.##6.186.61:8081
- 12#.##.176.59:8090
- 21#.##6.40.37:82
- 96.##.228.86:8080
- 13#.##8.74.122:8081
- 85.###.171.70:82
- 13#.##2.161.37:8181
- 12.##.122.26:8181
- 21#.##.243.228:8081
- 25#.###.185.197:8081
- 11#.##4.96.165:443
- 43.###.24.47:8081
- 15#.##.82.186:8181
- 10#.###.248.189:8080
- 23#.##.237.199:8181
- 80.##.98.109:8080
- 13#.###.236.143:8081
- 11#.##.92.159:9997
- 15.##.179.230:82
- 19#.##5.12.223:8081
- 12#.##7.53.82:82
- 15#.##.35.226:8080
- 13#.##3.149.236:443