General
-
Target
25fee987d64c0dbd60df80893b4d9dd9babedb2a1bccd6b04bf40cb6b56e2cac
-
Size
3.9MB
-
Sample
220524-d98tnshhhm
-
MD5
608cc8eb402f4e905b97fea917041cc4
-
SHA1
a12b4cbd159ade8f1780e76411379593c3750ba3
-
SHA256
25fee987d64c0dbd60df80893b4d9dd9babedb2a1bccd6b04bf40cb6b56e2cac
-
SHA512
4a5d6bcb1b9793956bef668783b4b967ab847c874fb31747fd3d7f67b1fae4e3775afb7d00dd0982699c33163a635db4e4aa979499987f637c81e5c115ba4708
Static task
static1
Behavioral task
behavioral1
Sample
25fee987d64c0dbd60df80893b4d9dd9babedb2a1bccd6b04bf40cb6b56e2cac.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
25fee987d64c0dbd60df80893b4d9dd9babedb2a1bccd6b04bf40cb6b56e2cac
-
Size
3.9MB
-
MD5
608cc8eb402f4e905b97fea917041cc4
-
SHA1
a12b4cbd159ade8f1780e76411379593c3750ba3
-
SHA256
25fee987d64c0dbd60df80893b4d9dd9babedb2a1bccd6b04bf40cb6b56e2cac
-
SHA512
4a5d6bcb1b9793956bef668783b4b967ab847c874fb31747fd3d7f67b1fae4e3775afb7d00dd0982699c33163a635db4e4aa979499987f637c81e5c115ba4708
-
Glupteba Payload
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Modifies Windows Firewall
-
Suspicious use of SetThreadContext
-