Overview

overview

10

Static

static

Latex+A5+B...8A.exe

windows7_x64

10

Latex+A5+B...8A.exe

windows10_x64

10

Resubmissions

15-09-2021 07:53

210915-jq2h5sabc9 10

15-09-2021 07:32

210915-jda6esdbel 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Latex+A5+Booklet+Template-PLND-ABMwKmEcmwAABTwCAEdCFwASAN3i2g8A.exe

  • Size

    4.3MB

  • Sample

    210915-jda6esdbel

  • MD5

    570090a065948e6d439e2b99f999f0a4

  • SHA1

    0f2bf4aad8e12a340e37457566edb9e6816eee9e

  • SHA256

    12ee6f798c7c0ade1d6f99819e7a4e714a22abb9a4c5b78506413dfc1d97eb3a

  • SHA512

    37e5d43d7fb893556aff079a696e13db4b7d186576a268eeb512a86790caf9fc370e4b737a6c3cc53b46bd5c311a801f0733c9c414e0750aa28db78e6cf3ee01

Score
10/10
gluptebametasploitbackdoordropperloadertrojan

Malware Config

Extracted

Family

metasploit

Version

windows/single_exec

Targets

    • Target

      Latex+A5+Booklet+Template-PLND-ABMwKmEcmwAABTwCAEdCFwASAN3i2g8A.exe

    • Size

      4.3MB

    • MD5

      570090a065948e6d439e2b99f999f0a4

    • SHA1

      0f2bf4aad8e12a340e37457566edb9e6816eee9e

    • SHA256

      12ee6f798c7c0ade1d6f99819e7a4e714a22abb9a4c5b78506413dfc1d97eb3a

    • SHA512

      37e5d43d7fb893556aff079a696e13db4b7d186576a268eeb512a86790caf9fc370e4b737a6c3cc53b46bd5c311a801f0733c9c414e0750aa28db78e6cf3ee01

    Score
    10/10
    gluptebametasploitbackdoordropperloadertrojan

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba Payload

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks