Collection of Upatre Samples ( alpha version)

Config File for be6bd9a1d1f2936f3ccdb2eeba28e1c1

md5
be6bd9a1d1f2936f3ccdb2eeba28e1c1
source
virusshare
link
download.4n6?sample=0b77f6dcf751ff9120e1217f2bb9602093dabf29e9a87e27b361f7371d416ec7
malware_name
gunshum.exe
temp_file
SHUMCB2B.tmp
scandate
0000-00-00 00:00:00
parsed
2015-06-29 21:41:06
decrypt_keys
50aa714f
check_keys
7ae21e5f
c2_server
81.7.109.65
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1)
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
9
nr_delivery_sites
8
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
WAK22
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://85.248.2.228/waka22.png
2
https://95.80.123.41/waka22.png
3
https://91.240.97.54/waka22.png
4
https://46.151.130.90/waka22.png
5
https://145.255.5.178/waka22.png
6
https://46.16.225.236/waka22.png
7
https://128.0.85.11/waka22.png
8
https://5.44.15.70/waka22.png