General
-
Target
b5dd4a4ef95c5e7fa8223a57f26a4a5ea951982b580b69ae769b94763bdf78b8
-
Size
428KB
-
MD5
325d50601d6d6f208310c925bdfaf745
-
SHA1
1373007699efc3be732437dedd9a86b365913fe1
-
SHA256
b5dd4a4ef95c5e7fa8223a57f26a4a5ea951982b580b69ae769b94763bdf78b8
-
SHA512
476727638701e9db47ecd84bfdeb84c2aadf83613097b46761739b44efd0c8167fbbe401d0c0ea6743db0a11d61ff22c297e1ff215a2f9b81817e94572fe5d0d
-
SSDEEP
12288:huMwfBi8vvrHxVPKyv2m77sZB07FxObO32Q:hHws8vrx52t07FQaB
Score
10/10
Malware Config
Extracted
Family
cybergate
Version
v3.4.2.2
Botnet
remote
C2
fastlobby90.ddns.net:1000
Mutex
T6S004E6F1HVC6
Attributes
-
enable_keylogger
true
-
enable_message_box
true
-
ftp_directory
./logs
-
ftp_interval
30
-
injected_process
explorer.exe
-
install_dir
install
-
install_file
server.exe
-
install_flag
false
-
keylogger_enable_ftp
false
-
message_box_caption
Cette application n'est pas compatible avec ce systeme d'exploitation.
-
message_box_title
Erreur de compatibilité
-
password
cybergate
Signatures
-
Cybergate family
Files
-
b5dd4a4ef95c5e7fa8223a57f26a4a5ea951982b580b69ae769b94763bdf78b8
Headers
Sections