General
-
Target
81433fda4aed4a25ccf1dae5855725087691e4139e21278d3930e0dda4364d9d
-
Size
4.0MB
-
Sample
230221-mayn4aed68
-
MD5
560d890275f671cb7679a0220616e332
-
SHA1
f9ba258e33e7e48e4c578564d89ff04899d363f9
-
SHA256
81433fda4aed4a25ccf1dae5855725087691e4139e21278d3930e0dda4364d9d
-
SHA512
c6e3ecf60323cc3fcb7bb899426f3ffa043cc49500e92bf321815bac0347063c8ff95d04c6327f6036a0e45a0d1466c81a0e72d9cb4e798ce87ecfa1117e5397
-
SSDEEP
98304:bZSAU52/ToHhsGVOMurwtgMX3tPcGTtpn:bZgM/TizHrNtpn
Static task
static1
Malware Config
Targets
-
-
Target
81433fda4aed4a25ccf1dae5855725087691e4139e21278d3930e0dda4364d9d
-
Size
4.0MB
-
MD5
560d890275f671cb7679a0220616e332
-
SHA1
f9ba258e33e7e48e4c578564d89ff04899d363f9
-
SHA256
81433fda4aed4a25ccf1dae5855725087691e4139e21278d3930e0dda4364d9d
-
SHA512
c6e3ecf60323cc3fcb7bb899426f3ffa043cc49500e92bf321815bac0347063c8ff95d04c6327f6036a0e45a0d1466c81a0e72d9cb4e798ce87ecfa1117e5397
-
SSDEEP
98304:bZSAU52/ToHhsGVOMurwtgMX3tPcGTtpn:bZgM/TizHrNtpn
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-