Collection of Upatre Samples ( alpha version)

Config File for ea901adb8cfd887fc3cc07d9a3fa14f2

md5
ea901adb8cfd887fc3cc07d9a3fa14f2
source
malwr
link
https://malwr.com/analysis/ZDUxYzU2MTEwNDY0NDA2Mzg0MWM0NGQ5MTE4YzhjMDI/
malware_name
crystal_viewer.exe
temp_file
crystal-E47C.log
scandate
2015-10-14 08:52:30
parsed
2015-10-14 18:19:49
decrypt_keys
3d08407a
check_keys
778c857f
c2_server
91.211.17.201
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1)
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
17
nr_delivery_sites
16
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
WEEK22
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://31.42.170.118/week22.png
2
https://188.255.237.48/week22.png
3
https://188.255.189.53/week22.png
4
https://188.255.252.227/week22.png
5
https://178.54.172.163/week22.png
6
https://188.255.249.28/week22.png
7
https://188.255.144.62/week22.png
8
https://188.255.148.235/week22.png
9
https://188.255.174.234/week22.png
10
https://188.255.241.59/week22.png
11
https://188.255.238.187/week22.png
12
https://188.255.165.154/week22.png
13
https://87.116.153.216/week22.png
14
https://188.255.212.27/week22.png
15
https://188.255.238.184/week22.png
16
https://31.42.170.198/week22.png