cybergate | 55f9e8766f7bdb227958777f855b75e8ba94208e6988423b9e5ec245f96a753c | Triage

Submit
Reports

Overview

overview

Static

static

55f9e8766f...3c.exe

windows7-x64

1

55f9e8766f...3c.exe

windows10-2004-x64

3

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

55f9e8766f7bdb227958777f855b75e8ba94208e6988423b9e5ec245f96a753c.exe

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

55f9e8766f7bdb227958777f855b75e8ba94208e6988423b9e5ec245f96a753c.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

1 signatures

150 seconds

General

Target

55f9e8766f7bdb227958777f855b75e8ba94208e6988423b9e5ec245f96a753c
Size

316KB
MD5

0e0441c71f56bdb8578945d5536b1875
SHA1

2179f4d8472a080483067a8552ad7be9915ed1e4
SHA256

55f9e8766f7bdb227958777f855b75e8ba94208e6988423b9e5ec245f96a753c
SHA512

8bfc3f8f90e8aec6ba3260512b8dc4d1a13ab95f5c7f16280f64ff16d2893177df8d5e2e4cad569ad493083a1ac683f4e5b9225e62f49f6013d075ea249760f6
SSDEEP

6144:bOpsl3lqkhdBCkWYxuukP1pjSKSNVkq/MVJb:bwsl1TBd47GLRMTb

Score

10^/10

zeus cybergate

Malware Config

Extracted

Family

cybergate

Version

v1.07.5

Botnet

Zeus

C2

wqi.no-ip.biz:267

Mutex

6CNU5MB1EUDNE6

Attributes

enable_keylogger
false
enable_message_box
false
ftp_directory
./logs/
ftp_interval
30
injected_process
explorer.exe
install_dir
mozilla
install_file
updaterff.exe
install_flag
true
keylogger_enable_ftp
false
message_box_caption
Remote Administration anywhere in the world.
message_box_title
CyberGate
password
1095057

Signatures

Cybergate family
cybergate

Files

55f9e8766f7bdb227958777f855b75e8ba94208e6988423b9e5ec245f96a753c
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 572B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8B - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 225KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy