Collection of Upatre Samples ( alpha version)

Config File for dec1c2da2cdf95fc713af69308f5dcd6

md5
dec1c2da2cdf95fc713af69308f5dcd6
source
malwr
link
https://malwr.com/analysis/Zjg1NjQwNzBjYWU2NDk0MDhmMTA4NTU5ZTg4NTljNTE/
malware_name
dozyuma.exe
temp_file
log1.log
scandate
2015-04-03 09:04:27
parsed
2015-06-26 00:35:52
decrypt_keys
28571a75
check_keys
5ff1bd0a
c2_server
141.105.141.87
baseport
9587
useragent
Mazilla/5.0
payload_format
reg
old
0
clientip
checkip.dyndns.org
nr_targets
3
nr_delivery_sites
2
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
0304us21
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://LOJASDEOURO.com/mandoc/zini3.doc
2
https://encomiendaexpress.com/mandoc/zini3.doc