General
-
Target
a87114dc4ec7ce933566c340a402476534bccc83e7f5fead712e4b448b54ba8d
-
Size
4.1MB
-
Sample
220829-pw9dtshcgj
-
MD5
37621090e257b4e6a358a18b2fb0d983
-
SHA1
637a113ea1ad118334ba15e24d58b94dc3377d90
-
SHA256
a87114dc4ec7ce933566c340a402476534bccc83e7f5fead712e4b448b54ba8d
-
SHA512
d42d20e5695eecd998474405804908d2501a27e5db23a18f4fd7ab7c2f47b937c4e693b84d38bbe599a0ab16aae34e185ec22ff3bce8eef0408f9d69094cdcb8
-
SSDEEP
98304:dCb4MUVamxifDHwA2LTpPLymQWGMHmt7ODVekehwWz3:gbfUD+l2npP6Aadr
Malware Config
Targets
-
-
Target
a87114dc4ec7ce933566c340a402476534bccc83e7f5fead712e4b448b54ba8d
-
Size
4.1MB
-
MD5
37621090e257b4e6a358a18b2fb0d983
-
SHA1
637a113ea1ad118334ba15e24d58b94dc3377d90
-
SHA256
a87114dc4ec7ce933566c340a402476534bccc83e7f5fead712e4b448b54ba8d
-
SHA512
d42d20e5695eecd998474405804908d2501a27e5db23a18f4fd7ab7c2f47b937c4e693b84d38bbe599a0ab16aae34e185ec22ff3bce8eef0408f9d69094cdcb8
-
SSDEEP
98304:dCb4MUVamxifDHwA2LTpPLymQWGMHmt7ODVekehwWz3:gbfUD+l2npP6Aadr
Score10/10-
Glupteba
Glupteba is a modular loader written in Golang with various components.
-
Windows security bypass
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-