General
-
Target
a8e12f6495b069ba91243fc7b0a034dc50752a127b280a6841eed2e3b9700cc9
-
Size
3.9MB
-
Sample
220509-axe42sbgd3
-
MD5
5fff3e611f65f1aaa315c4827048d41f
-
SHA1
cd128777a5c4924da282891c360e252d21406e94
-
SHA256
a8e12f6495b069ba91243fc7b0a034dc50752a127b280a6841eed2e3b9700cc9
-
SHA512
64f75e2c59eb137e78fdfb8bb4988ee12e87d6c719a159309ae5229c78932a66a4be6222098817c6db0da93d66df98e356b5ce097d9a91a6f038df6c6f9b2820
Static task
static1
Behavioral task
behavioral1
Sample
a8e12f6495b069ba91243fc7b0a034dc50752a127b280a6841eed2e3b9700cc9.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
a8e12f6495b069ba91243fc7b0a034dc50752a127b280a6841eed2e3b9700cc9
-
Size
3.9MB
-
MD5
5fff3e611f65f1aaa315c4827048d41f
-
SHA1
cd128777a5c4924da282891c360e252d21406e94
-
SHA256
a8e12f6495b069ba91243fc7b0a034dc50752a127b280a6841eed2e3b9700cc9
-
SHA512
64f75e2c59eb137e78fdfb8bb4988ee12e87d6c719a159309ae5229c78932a66a4be6222098817c6db0da93d66df98e356b5ce097d9a91a6f038df6c6f9b2820
-
Glupteba Payload
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Modifies Windows Firewall
-
Modifies boot configuration data using bcdedit
-