General
-
Target
f3788f95b3967fd645638819674fd1e18508639526716738f7bb52c7b3e29af7
-
Size
4.0MB
-
Sample
230220-y6gk8seb41
-
MD5
d1e8b0d9993636e48b9669f1c759ef3a
-
SHA1
4b73589b68a6824e2e8425766c6eb5e9e93f35a3
-
SHA256
f3788f95b3967fd645638819674fd1e18508639526716738f7bb52c7b3e29af7
-
SHA512
568ae3d8cc4a0697831ff069a374d11da49ec764615f25886288ec1918d760b932842f34a9496e3e46f24be48b68cdc33448435b2cb8671f244ed670e6ef8736
-
SSDEEP
98304:8S7FeyX8mKTHwtcveEq2A8zTPhLzxtqGutAoq6Lc:8SnM0ma21Ltat5q6I
Static task
static1
Malware Config
Targets
-
-
Target
f3788f95b3967fd645638819674fd1e18508639526716738f7bb52c7b3e29af7
-
Size
4.0MB
-
MD5
d1e8b0d9993636e48b9669f1c759ef3a
-
SHA1
4b73589b68a6824e2e8425766c6eb5e9e93f35a3
-
SHA256
f3788f95b3967fd645638819674fd1e18508639526716738f7bb52c7b3e29af7
-
SHA512
568ae3d8cc4a0697831ff069a374d11da49ec764615f25886288ec1918d760b932842f34a9496e3e46f24be48b68cdc33448435b2cb8671f244ed670e6ef8736
-
SSDEEP
98304:8S7FeyX8mKTHwtcveEq2A8zTPhLzxtqGutAoq6Lc:8SnM0ma21Ltat5q6I
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-