General
-
Target
4b23d5fef10196d4762dace6e7156cb52e743788f96541f3d609dbed204219f6
-
Size
4.0MB
-
Sample
230220-t5lfksbf32
-
MD5
78848d53017748f91b761cb78ccd1928
-
SHA1
af9a014474101cb63658f48ab8108ed9985b9fc5
-
SHA256
4b23d5fef10196d4762dace6e7156cb52e743788f96541f3d609dbed204219f6
-
SHA512
26939ac6c74af1d569d830335cce023c681ed435dd2c602f280513b535f80159c05a23c45032df69b1577ff7cbc3a72a7447077e866d7637ec2c7a81efecf34e
-
SSDEEP
98304:WMl1bCfev7JhW3xrkcITFff9vNIhakZJD/2+uwX74GlB:jjW3pkhFfFsakZJDuiL4GT
Static task
static1
Malware Config
Targets
-
-
Target
4b23d5fef10196d4762dace6e7156cb52e743788f96541f3d609dbed204219f6
-
Size
4.0MB
-
MD5
78848d53017748f91b761cb78ccd1928
-
SHA1
af9a014474101cb63658f48ab8108ed9985b9fc5
-
SHA256
4b23d5fef10196d4762dace6e7156cb52e743788f96541f3d609dbed204219f6
-
SHA512
26939ac6c74af1d569d830335cce023c681ed435dd2c602f280513b535f80159c05a23c45032df69b1577ff7cbc3a72a7447077e866d7637ec2c7a81efecf34e
-
SSDEEP
98304:WMl1bCfev7JhW3xrkcITFff9vNIhakZJD/2+uwX74GlB:jjW3pkhFfFsakZJDuiL4GT
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-