General
-
Target
7e828e8c52c88d5f228eb3239219bc1e
-
Size
272KB
-
Sample
240129-btb4nagdel
-
MD5
7e828e8c52c88d5f228eb3239219bc1e
-
SHA1
bd36e767ec0ce8602f1c049039fb42f3320bf8f8
-
SHA256
78d12aab0cb63fc101727da2b4f16c7984f0af49afc8fba696095a6ded3cf506
-
SHA512
5baa850cce508f8522e8f6c1e7331514c0d9bfc14958638340273eac1d3459233849786b022fe52760ccf8e488c4ad738a8b340bf87cf9078f16b0b1ac1918a8
-
SSDEEP
6144:Nk4qmKcaqde+osNekM8ZfISwfZ3yzfn/CaOKAy:a9cep8ZwNZ3sCHm
Behavioral task
behavioral1
Sample
7e828e8c52c88d5f228eb3239219bc1e.exe
Resource
win7-20231129-en
Malware Config
Extracted
cybergate
2.6
vítima
tiger-n.no-ip.biz:81
explorer
-
enable_keylogger
true
-
enable_message_box
false
-
ftp_directory
./logs/
-
ftp_interval
30
-
injected_process
explorer.exe
-
install_dir
System32
-
install_file
svhost.exe
-
install_flag
true
-
keylogger_enable_ftp
false
-
message_box_caption
texto da mensagem
-
message_box_title
título da mensagem
-
password
147741
-
regkey_hkcu
HKCU
-
regkey_hklm
HKLM
Targets
-
-
Target
7e828e8c52c88d5f228eb3239219bc1e
-
Size
272KB
-
MD5
7e828e8c52c88d5f228eb3239219bc1e
-
SHA1
bd36e767ec0ce8602f1c049039fb42f3320bf8f8
-
SHA256
78d12aab0cb63fc101727da2b4f16c7984f0af49afc8fba696095a6ded3cf506
-
SHA512
5baa850cce508f8522e8f6c1e7331514c0d9bfc14958638340273eac1d3459233849786b022fe52760ccf8e488c4ad738a8b340bf87cf9078f16b0b1ac1918a8
-
SSDEEP
6144:Nk4qmKcaqde+osNekM8ZfISwfZ3yzfn/CaOKAy:a9cep8ZwNZ3sCHm
-