Collection of Upatre Samples ( alpha version)

Config File for b6dd825618185e111d3640b5c5328860

md5
b6dd825618185e111d3640b5c5328860
source
virusshare
link
download.4n6?sample=139b4ba4dfd02965bf0818405b8f5ea92d6a77d20c283e356e4ab16c6a89341d
malware_name
giwingmore.exe
temp_file
Give_528.txt
scandate
2015-07-12 08:06:39
parsed
2015-10-06 14:59:28
decrypt_keys
3e51cf28
check_keys
74090789
c2_server
188.120.194.101
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1) AppleWebKit/538.37 (KHTML, like Gecko) Chrome/44.0.2457.82 Safari/538.37
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
31
nr_delivery_sites
30
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
IMG12
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://173.248.29.43/i12.png
2
https://109.86.226.85/i12.png
3
https://24.220.92.193/i12.png
4
https://176.36.251.208/i12.png
5
https://188.255.165.154/i12.png
6
https://173.216.240.56/i12.png
7
https://68.190.246.142/i12.png
8
https://188.255.169.176/i12.png
9
https://162.255.126.8/i12.png
10
https://75.137.112.81/i12.png
11
https://69.163.81.211/i12.png
12
https://216.254.231.11/i12.png
13
https://24.33.131.116/i12.png
14
https://68.119.5.32/i12.png
15
https://71.194.36.73/i12.png
16
https://97.92.125.74/i12.png
17
https://98.204.215.92/i12.png
18
https://70.121.191.206/i12.png
19
https://72.230.82.80/i12.png
20
https://208.123.130.173/i12.png
21
https://178.214.221.89/i12.png
22
https://173.248.22.227/i12.png
23
https://173.248.31.1/i12.png
24
https://173.248.31.6/i12.png
25
https://188.255.167.4/i12.png
26
https://173.248.27.163/i12.png
27
https://173.243.255.79/i12.png
28
https://69.9.204.114/i12.png
29
https://73.175.203.173/i12.png
30
https://188.255.239.34/i12.png