Collection of Upatre Samples ( alpha version)

Config File for 97ab139588ee98d140143f606115165e

md5
97ab139588ee98d140143f606115165e
source
virusshare
link
download.4n6?sample=86f1b78efe2bc736b5d85bb75d2920130fb9ddbf1a41480a44a660e5a3803aba
malware_name
mscodecs.exe
temp_file
tusi01T.txt
scandate
0000-00-00 00:00:00
parsed
2015-06-29 01:01:23
decrypt_keys
09e89a25
check_keys
5c9ba1d9
c2_server
202.153.35.133
baseport
9587
useragent
Mazilla/4.0
payload_format
reg
old
0
clientip
nr_targets
2
nr_delivery_sites
2
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
2201us21
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://WHOLESALESYNTHETICMOTOROIL.COM/mandoc/story_su21.pdf
2
https://wholesale-motoroilonline.com/files/story_su21.pdf