Collection of Upatre Samples ( alpha version)

Config File for 56a4d509c6c9274f5c8081c67246e277

md5
56a4d509c6c9274f5c8081c67246e277
source
virusshare
link
download.4n6?sample=1f0bc9e2300054c9924b47f76a8570963daa890a7c78db47db74c8468de3fc97
malware_name
defnx.exe
temp_file
scandate
0000-00-00 00:00:00
parsed
2015-07-09 11:14:54
decrypt_keys
2d80fa93
check_keys
c2_server
188.165.205.194
baseport
9587
useragent
Opera
payload_format
sim
old
0
clientip
nr_targets
4
nr_delivery_sites
4
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
1808cw, 1808h
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://jannecolby.com/image/ppal/404.dat
2
https://santaclarainmuebles.com/styles/404.dat
3
https://majestichotelbh.com/js/heap.dat
4
https://hngdecor.com/wp-content/themes/twentythirteen/js/heap.dat