Collection of Upatre Samples ( alpha version)

Config File for 120785340195044ca2c7b58a30cc3814

md5
120785340195044ca2c7b58a30cc3814
source
virusshare
link
download.4n6?sample=926b99f2578658c862b7a58cdf84c52d1f0cd52d9db455e51e3cff3b23bb9c7b
malware_name
Vmbsetup.exe
temp_file
VMB_3D08.log
scandate
0000-00-00 00:00:00
parsed
2015-06-29 19:51:50
decrypt_keys
50aa714f
check_keys
7ae21e5f
c2_server
81.7.109.65
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1)
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
9
nr_delivery_sites
8
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
WAK21
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://5.44.15.70/waka21.png
2
https://85.248.2.228/waka21.png
3
https://95.80.123.41/waka21.png
4
https://91.240.97.54/waka21.png
5
https://46.151.130.90/waka21.png
6
https://145.255.5.178/waka21.png
7
https://46.16.225.236/waka21.png
8
https://128.0.85.11/waka21.png