General
-
Target
1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73
-
Size
3.7MB
-
Sample
220523-zwketabegn
-
MD5
99341f426f442f0cc846cdbd47515904
-
SHA1
47bcc0a95f0dbf8a764d646a9f2ab4595944280e
-
SHA256
1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73
-
SHA512
847a4f5aa7f7eec98f72502f1a6ded7d9ca7ae6f3c55913e990327dd650cbf0ed9b2caee0bd41dc6739b4792838b49ad3b2481bc1d19793bcc50601c53479380
Static task
static1
Behavioral task
behavioral1
Sample
1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73
-
Size
3.7MB
-
MD5
99341f426f442f0cc846cdbd47515904
-
SHA1
47bcc0a95f0dbf8a764d646a9f2ab4595944280e
-
SHA256
1dbc079b2a8bf6ecf926d62e71ffbf8a591d901b34f5ed4b89d30979719b2c73
-
SHA512
847a4f5aa7f7eec98f72502f1a6ded7d9ca7ae6f3c55913e990327dd650cbf0ed9b2caee0bd41dc6739b4792838b49ad3b2481bc1d19793bcc50601c53479380
-
Glupteba Payload
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-