Malware Signature
The following table shows a list of malware samples and the corresponding botnet C&C (ip:port) associated with RockLoader
Database Entry
| Malware: | RockLoader |
|---|---|
| First seen: | 2016-06-27 20:20:13 UTC |
| Last seen: | 2016-08-30 14:53:56 UTC |
Malware Samples
The table below documents all malware samples associated with this malware family.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2016-08-30 14:53:56 | be6fb7580b1cdae0d16f1a93c6d964b4 |  35/58 (60.34%)
| RockLoader | 5.1.75.220:443 |
| 2016-08-30 14:53:56 | be6fb7580b1cdae0d16f1a93c6d964b4 | 35/58 (60.34%)
| RockLoader | 5.1.75.220:443 |
| 2016-06-27 20:20:13 | 846171e2629b712429a903811d19c12b | 45/54 (83.33%)
| RockLoader | 188.225.39.2:443 |
| 2016-06-27 20:20:13 | 846171e2629b712429a903811d19c12b | 45/54 (83.33%)
| RockLoader | 188.225.39.2:443 |