glupteba | 049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf | Triage

Submit
Reports

Overview

overview

Static

static

049c51db36...df.exe

windows7_x64

049c51db36...df.exe

windows10-2004_x64

Sharing

General

Target

049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf
Size

3.9MB
Sample

220509-aye6faefcl
MD5

7324b95ed8b9aacbfc957ac75369fb2d
SHA1

c8362b9dff8fb08b601e94881e3c2efe16a41999
SHA256

049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf
SHA512

e5b4894c6a8d583a7bb226d95d82080263850153b376baccdf790cbf0b8d1399a9330e12e4efb07201865a42180f78c3a8b7877eb1ca1631bd5f707444c6c79e

Score

10^/10

glupteba dropper evasion loader

Static task

static1

Behavioral task

behavioral1

Sample

049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf.exe

Resource

win7-20220414-en

glupteba dropper evasion loader

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf.exe

Resource

win10v2004-20220414-en

glupteba dropper evasion loader

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf
- Size
  
  3.9MB
- MD5
  
  7324b95ed8b9aacbfc957ac75369fb2d
- SHA1
  
  c8362b9dff8fb08b601e94881e3c2efe16a41999
- SHA256
  
  049c51db366fe3e22f2e97e0df9a891dd21f671e2d9fa0737f678bead6fdbbdf
- SHA512
  
  e5b4894c6a8d583a7bb226d95d82080263850153b376baccdf790cbf0b8d1399a9330e12e4efb07201865a42180f78c3a8b7877eb1ca1631bd5f707444c6c79e
Score

10^/10

glupteba dropper evasion loader
- Glupteba
  Glupteba is a modular loader written in Golang with various components.
  loader dropper glupteba
- Glupteba Payload
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Modify Existing Service

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

gluptebadropperevasionloader

behavioral2

gluptebadropperevasionloader

© 2018-2024

Terms | Privacy