General
-
Target
5fc422461f75e1b1a85824149bf7a155f008712b3afceae525db1c945344ebf4
-
Size
4.0MB
-
Sample
230220-y4bxzacc74
-
MD5
884aaaa39f47b250b8cb935515733b65
-
SHA1
d07f919bc5cb7fce58c37ed7219505dc0261db15
-
SHA256
5fc422461f75e1b1a85824149bf7a155f008712b3afceae525db1c945344ebf4
-
SHA512
90d261874f96e756c6dc1e41850db3a7464b691c2336f8b263007f7e2c64530b122ef6a592494debdec643079e93c3fe07a274ed8009573cb0444130aca4cf2e
-
SSDEEP
98304:8S7FeyX8mKTHwtcveEq2A8zTPhLzxtqGutAoq6L6:8SnM0ma21Ltat5q6W
Static task
static1
Malware Config
Targets
-
-
Target
5fc422461f75e1b1a85824149bf7a155f008712b3afceae525db1c945344ebf4
-
Size
4.0MB
-
MD5
884aaaa39f47b250b8cb935515733b65
-
SHA1
d07f919bc5cb7fce58c37ed7219505dc0261db15
-
SHA256
5fc422461f75e1b1a85824149bf7a155f008712b3afceae525db1c945344ebf4
-
SHA512
90d261874f96e756c6dc1e41850db3a7464b691c2336f8b263007f7e2c64530b122ef6a592494debdec643079e93c3fe07a274ed8009573cb0444130aca4cf2e
-
SSDEEP
98304:8S7FeyX8mKTHwtcveEq2A8zTPhLzxtqGutAoq6L6:8SnM0ma21Ltat5q6W
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-