General
-
Target
d69947553598757a053c45ff0b2c70250c61c9e626589a027880716fe31f4d3e
-
Size
4.0MB
-
Sample
230221-vecw7afe66
-
MD5
d3ac6778d53fd6a2713718b02e2f0ba2
-
SHA1
36b619e35b7b2c536136051d8a9977a13cd76ac4
-
SHA256
d69947553598757a053c45ff0b2c70250c61c9e626589a027880716fe31f4d3e
-
SHA512
65e4975dc987b3126dd23edd03fadb1db45d9f83b80a8c8883933752d9d535135c05ff870a60e12a69f07d67e1920422e03330252075004fa7c2413ac518d946
-
SSDEEP
98304:tfVSxIPdgd8feRQZUKSroRj6k6LDLp1LM6e:tfIxQ2ufeR//rXkIh1LM6e
Static task
static1
Malware Config
Targets
-
-
Target
d69947553598757a053c45ff0b2c70250c61c9e626589a027880716fe31f4d3e
-
Size
4.0MB
-
MD5
d3ac6778d53fd6a2713718b02e2f0ba2
-
SHA1
36b619e35b7b2c536136051d8a9977a13cd76ac4
-
SHA256
d69947553598757a053c45ff0b2c70250c61c9e626589a027880716fe31f4d3e
-
SHA512
65e4975dc987b3126dd23edd03fadb1db45d9f83b80a8c8883933752d9d535135c05ff870a60e12a69f07d67e1920422e03330252075004fa7c2413ac518d946
-
SSDEEP
98304:tfVSxIPdgd8feRQZUKSroRj6k6LDLp1LM6e:tfIxQ2ufeR//rXkIh1LM6e
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-