Details
FileName | |
---|---|
Malware Family | CyberGate |
Date Added | 2015-09-24 18:10:39 |
MD5 | c8aa15d5951baf72b2fecd610370a2d9 |
Sha256 | ccbd9fbe9373a479a407e665abb6ff6efa89bb2f99003244d2a86e2fdec08387 |
Robot | Robots lovingly delivered by robohash.org |
Advertising
Config Data
FTPPassword | + |
---|---|
CampaignID | maxime |
Password | 1235 |
USBSpread | 1000 |
FTPAddress | ftp.server.com |
InstallDir | install |
Persistance | TRUE |
InstallMessageTitle | CyberGate |
KeyloggerBackspace | TRUE |
HideFile | FALSE |
FTPDirectory | ./logs/ |
Domain | adwarddns.no-ip.org, |
InstallFileName | server.exe |
FTPPort | 21 |
REGKeyHKCU | |
MessageBoxIcon | 16 |
Port | 1114, |
CyberGateVersion | |
StartupPolicies | Policies |
REGKeyHKLM | |
FTPUserName | ftp_user |
ChangeCreationDate | TRUE |
MeltFile | FALSE |
Mutex | DF8V614UAV0G01 |
KeyloggerEnableFTP | FALSE |
FTPInterval | 30 |
InstallMessageBox | Remote Administration anywhere in the world. |
InstallFlag | FALSE |
ActiveXStartup | {A3C45K7L-ACU6-5YXW-LUVY-BVQSAS6J233O} |
EnableMessageBox | FALSE |
ActivateKeylogger | TRUE |
MessageBoxButton | 0 |
Virustotal
0 out of 0 AV Engines identified the sample as Malicious.