sentryme.com (Betabot http botnet hosted by ecatel.net)

By I_Post_Ur_Info, September 20, 2013

Resolved sentryme.com to 94.102.51.123

Server: Sentryme.com
Gate file: /order.php

Altnerate domain:
stayattentive.com

Bitcoin mining info:
-a sha256 -o stratum+tcp://162.243.6.88:3333 -u Ghettoweed.R -p x -g no -t 4
-a sha256 -o stratum+tcp://162.243.6.88:3333 -u Ghettoweed.R -p x -t 0 -I 10

The username string in the binary is the sky daddy_v1$, which corresponds to this Hackforums account.

Hosting infos: http://whois.domaintools.com/94.102.51.123

Related md5s (Search on Malwr.com to download samples)
Betabot: c6ca1470501c1d885717104ca9ac51e2

Categories: Uncategorized

Tags: beta botBitcoin Miner Botnetthe sky daddy

Previous postadobe-helper.cloudapp.net (Andromeda http botnet hosted by microsoft.com)

Next postn18b7273u1j.in (Betabot http botnet hosted by worldstream.nl)

2 Comments

Anonymous - September 20, 2013 at 6:23 pm

Is this latest version of betabot? ( 1.5 )

Anonymous - October 6, 2013 at 7:39 pm

ahahahahah CANT BELIEVE THE CODER PUT USERNAMES IN THE BIN, NICE!

sinsec.net (Betabot http botnet hosted by alibabahost.com)

api.wifi-update.biz (Betabot http botnet hosted by oneandone.net)

frizzcams.com (Betabot http botnet hosted by Balticservers.com)

2 Comments

Anonymous - September 20, 2013 at 6:23 pm

Anonymous - October 6, 2013 at 7:39 pm

Comments are closed