Gaudox - HTTP Bot (1.1.0.1) | C++/ASM | Ring3 Rootkit | Watchdog | Antis |
Tags
attack-pattern: Data Control Panel - T1218.002 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Connection Proxy - T1090 Rootkit - T1014 Rootkit
Show in Graph
Common Information
Type Value
UUID f9ae0de4-1afd-4142-9d8e-faf640f067be
Fingerprint 182518d68cb192fc
Analysis status DONE
Considered CTI value 2
Text language
Published March 11, 2016, 1:01 p.m.
Added to db Sept. 26, 2022, 9:30 a.m.
Last updated Nov. 17, 2024, 12:58 p.m.
Headline Net Tool'z
Title Gaudox - HTTP Bot (1.1.0.1) | C++/ASM | Ring3 Rootkit | Watchdog | Antis |
Detected Hints/Tags/Attributes 27/1/22
Source URLs
Redirection Url
Details Source http://nettoolz.blogspot.ch/2016/03/gaudox-http-bot-1101-casm-ring3-rootkit.html
URL Provider
Details Provider Source level domain
Details blogspot.ch nettoolz.blogspot.ch
Attributes
Details Type #Events CTI Value
Details Domain 22 
hackforums.net
Details File 1 
627e2d4.jpg
Details File 1 
acb1430.jpg
Details File 1 
bb2c161.png
Details File 1 
3194cfd.png
Details File 1 
251b9fb.jpg
Details File 1 
27a48f1.jpg
Details File 1 
29caf7e.jpg
Details File 1 
2c55ddc.jpg
Details File 1 
a91d043.jpg
Details File 156 
1.exe
Details File 23 
1.rar
Details File 13 
setup.php
Details File 207 
login.php
Details File 32 
showthread.php
Details md5 1 
1AF2E1B11B1D7543A19662F7291856F4
Details md5 1 
F99A3FBDEB1B0CD12BB1E6ED700ADE90
Details sha1 1 
de5bd976fb5a4b50d8c8739e6b9f286f5b1a4798
Details sha1 1 
a00a2b6d6c5806c75c5551073283d1218ac017c8
Details IPv4 13 
1.1.0.1
Details IPv4 17 
1.1.0.0
Details Url 1 
http://hackforums.net/showthread.php?tid=5084324