Details
FileName | |
---|---|
Malware Family | CyberGate |
Date Added | 2015-09-14 21:06:02 |
MD5 | 50a4ec8a910f8efdac6f58bd5d4d8b8f |
Sha256 | 8e441c662907e1ceff565e9b0f3e99533d6dabc7ec6d79ef6f323d1864b674b9 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
FTPPassword | + |
---|---|
CampaignID | my friend |
Password | bma1992 |
USBSpread | TRUE |
FTPAddress | ftp.server.com |
InstallDir | install |
Persistance | TRUE |
InstallMessageTitle | t?tulo da mensagem |
KeyloggerBackspace | FALSE |
HideFile | TRUE |
FTPDirectory | ./logs/ |
Domain | 127.0.0.1,41.232.15.41, |
InstallFileName | server.exe |
FTPPort | 21 |
REGKeyHKCU | HKCU |
MessageBoxIcon | 16 |
Port | 288,82, |
CyberGateVersion | |
StartupPolicies | Policies |
REGKeyHKLM | HKLM |
FTPUserName | ftp_user |
ChangeCreationDate | TRUE |
MeltFile | FALSE |
Mutex | ***mohob*** |
KeyloggerEnableFTP | FALSE |
FTPInterval | 30 |
InstallMessageBox | texto da mensagem |
InstallFlag | TRUE |
ActiveXStartup | |
EnableMessageBox | FALSE |
ActivateKeylogger | TRUE |
MessageBoxButton | 0 |
Virustotal
49 out of 56 AV Engines identified the sample as Malicious.