General
-
Target
45164f55a319aeb0e3c3a959c9169c5f464bc95af4efcd9f56befef7208371df
-
Size
3.9MB
-
Sample
220509-ax1ezsbge6
-
MD5
2be54f9ad0468543a07a896b5fc5030c
-
SHA1
9a8e7d24190ce69979119add12194bdc17101923
-
SHA256
45164f55a319aeb0e3c3a959c9169c5f464bc95af4efcd9f56befef7208371df
-
SHA512
08a95e2be1fa32faa3c38c50a13cf78fb0f201209dedd25b160eefccde8f18d8500d1809cd3cb9d08f6ed754dcd154c576c7986759d17aaa7496793d71175f31
Static task
static1
Behavioral task
behavioral1
Sample
45164f55a319aeb0e3c3a959c9169c5f464bc95af4efcd9f56befef7208371df.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
45164f55a319aeb0e3c3a959c9169c5f464bc95af4efcd9f56befef7208371df
-
Size
3.9MB
-
MD5
2be54f9ad0468543a07a896b5fc5030c
-
SHA1
9a8e7d24190ce69979119add12194bdc17101923
-
SHA256
45164f55a319aeb0e3c3a959c9169c5f464bc95af4efcd9f56befef7208371df
-
SHA512
08a95e2be1fa32faa3c38c50a13cf78fb0f201209dedd25b160eefccde8f18d8500d1809cd3cb9d08f6ed754dcd154c576c7986759d17aaa7496793d71175f31
-
Glupteba Payload
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Modifies Windows Firewall
-
Modifies boot configuration data using bcdedit
-