Details
Malware Family CyberGate
Date Added Nov. 4, 2015, 7:23 p.m.
MD5 90b9696df41697103456d19783708370
Sha256 d771fc98d7a6e237264f35b2b5218041d5cf5440029dbb35c3108c14f0e1a037
Robot Robots lovingly delivered by robohash.org
Config Sections
MeltFile FALSE
InstallFlag TRUE
CampaignID
FTPPassword +
FTPDirectory ./logs/
Mutex ***MUTEX***
InstallDir
FTPPort 21
EnableMessageBox FALSE
Password abcd1234
FTPUserName ftp_user
InstallFileName Win_Xp.exe
FTPAddress ftp.server.com
REGKeyHKLM
MessageBoxButton 0
StartupPolicies
FTPInterval 30
InstallMessageTitle Error
KeyloggerEnableFTP FALSE
MessageBoxIcon 16
Domain shehapbakkar2.zapto.org,
ActiveXStartup {218A3Q1V-M05N-O32L-4AM8-MA0JEIMDL4ML}
InstallMessageBox Please try again later.
ChangeCreationDate TRUE
CyberGateVersion
Persistance TRUE
ActivateKeylogger TRUE
REGKeyHKCU
KeyloggerBackspace TRUE
HideFile TRUE
USBSpread TRUE
Port 90,
Advertising
VirusTotal

This hash does not exist in virustotal

Domain Data
Domain IP Country Code
shehapbakkar2.zapto.org 0
0
Geo Location
Yara Rules
Comments
comments powered by Disqus