cybergate | 68c79c794509eded88522108d407bd013876cab998a27a3b475fe7cdd0e962d1 | Triage

Submit
Reports

Overview

overview

Static

static

68c79c7945...d1.exe

windows7-x64

68c79c7945...d1.exe

windows10-2004-x64

Sharing

Static task

static1

öííé cybergate

1 signatures

Behavioral task

behavioral1

Sample

68c79c794509eded88522108d407bd013876cab998a27a3b475fe7cdd0e962d1.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

68c79c794509eded88522108d407bd013876cab998a27a3b475fe7cdd0e962d1.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

68c79c794509eded88522108d407bd013876cab998a27a3b475fe7cdd0e962d1
Size

239KB
MD5

04c9a9e96932b85d8cf02c9ae23fa42f
SHA1

1d705e8f707e947971414fe49e2e20f2f52be9c6
SHA256

68c79c794509eded88522108d407bd013876cab998a27a3b475fe7cdd0e962d1
SHA512

e8d53e065fd68b2c9920313e6b26c3050497955f532dc3249e5bf8058659e95b9723a3740777356390f1222e62e5f55e35740cd75dd3f428ac1e8432c8a0d6c9
SSDEEP

3072:diGpszXcD66XBRxP5JuXLFG3Oa95BrKUqEQ94jhc3PQuPe2D2ue3NXR0jWh:nmcD66RRl5JGmrpQsK3RD2u270ju

Score

10^/10

öííé cybergate

Malware Config

Extracted

Family

cybergate

Version

2.6

Botnet

ÖÍíÉ

C2

127.0.0.1:81

Mutex

***MUTEX***

Attributes

enable_keylogger
false
enable_message_box
false
ftp_directory
./logs/
ftp_interval
30
injected_process
svchost.exe
install_file
windows.exe
install_flag
false
keylogger_enable_ftp
false
message_box_caption
texto da mensagem
message_box_title
t?tulo da mensagem
password
2011

Signatures

Cybergate family
cybergate

Files

68c79c794509eded88522108d407bd013876cab998a27a3b475fe7cdd0e962d1
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.scpack
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy