Collection of Upatre Samples ( alpha version)

Config File for 394876fb8cbe42d5c2a5d801dbf67571

md5
394876fb8cbe42d5c2a5d801dbf67571
source
virusshare
link
download.4n6?sample=e31fb099b99922c9e2b7687ac3accc46e41e41acb8afa2ad1b75e99d343710fd
malware_name
DmiInstall.exe
temp_file
Dmi8369.log
scandate
0000-00-00 00:00:00
parsed
2015-06-29 20:23:53
decrypt_keys
71641b92
check_keys
2a6a97c3
c2_server
188.124.211.142
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1)
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
9
nr_delivery_sites
8
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
FRUK11
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://85.193.22.179/fra11.png
2
https://85.71.249.181/fra11.png
3
https://85.71.249.159/fra11.png
4
https://85.71.249.106/fra11.png
5
https://217.12.59.234/fra11.png
6
https://80.87.220.102/fra11.png
7
https://5.172.38.146/fra11.png
8
https://62.168.118.180/fra11.png