Collection of Upatre Samples ( alpha version)

Config File for bc7bb730e98fcde7044251784e0d8ceb

md5
bc7bb730e98fcde7044251784e0d8ceb
source
hybrid-analysis
link
/sample/9ae10d3964995c69b9d88f32af95f3ae057c04d9de0a5d8d801c2d15ebe1b466%232/9ae10d3964995c69b9d88f3
malware_name
wasine.exe
temp_file
wasaF398.tmp
scandate
0000-00-00 00:00:00
parsed
2015-07-23 10:27:05
decrypt_keys
6e9b695e
check_keys
557b78ea
c2_server
91.211.17.201
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1; rv:34.0) Gecko/20100101 Firefox/34.0
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
20
nr_delivery_sites
19
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
MOUSE77
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://188.255.148.254/mouse77.png
2
https://188.255.152.164/mouse77.png
3
https://38.124.75.146/mouse77.png
4
https://38.124.75.227/mouse77.png
5
https://178.214.221.89/mouse77.png
6
https://216.245.211.242/mouse77.png
7
https://37.57.144.177/mouse77.png
8
https://71.45.80.25/mouse77.png
9
https://176.36.251.208/mouse77.png
10
https://24.159.153.153/mouse77.png
11
https://38.124.60.17/mouse77.png
12
https://38.124.60.223/mouse77.png
13
https://38.124.61.144/mouse77.png
14
https://38.124.74.232/mouse77.png
15
https://38.124.74.82/mouse77.png
16
https://188.255.134.177/mouse77.png
17
https://188.255.172.200/mouse77.png
18
https://188.255.186.193/mouse77.png
19
https://188.255.142.250/mouse77.png