Collection of Upatre Samples ( alpha version)

Config File for b1eb386932775c084fa5808384150e50

md5
b1eb386932775c084fa5808384150e50
source
virusshare
link
download.4n6?sample=8ae2157a3a1d38a90f3336b8e9672fcec3fc33f6bf56784138522ee1b6a647f3
malware_name
Nintendo.exe
temp_file
39119Log.txt
scandate
2015-06-30 19:00:37
parsed
2015-10-06 00:34:24
decrypt_keys
6d7627f6
check_keys
134b4e0a
c2_server
93.185.4.90
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:36.0) Gecko/20100101 Firefox/36.0
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
16
nr_delivery_sites
15
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
TIK21
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://96.46.99.215/tiket21.png
2
https://162.249.150.113/tiket21.png
3
https://173.248.13.100/tiket21.png
4
https://109.75.154.46/tiket21.png
5
https://194.106.166.22/tiket21.png
6
https://188.255.186.193/tiket21.png
7
https://95.143.130.63/tiket21.png
8
https://68.170.58.11/tiket21.png
9
https://178.222.250.35/tiket21.png
10
https://94.154.107.172/tiket21.png
11
https://178.219.10.23/tiket21.png
12
https://79.101.42.247/tiket21.png
13
https://209.240.179.10/tiket21.png
14
https://188.255.249.28/tiket21.png
15
https://38.66.20.98/tiket21.png