General
-
Target
a39ef10aa1314462d43d64352fac6ee69f5aa5a7a9ac6438753f065d52acd14c
-
Size
4.1MB
-
Sample
230325-11vxsage9t
-
MD5
42fc788c2f786fefa1f3140b90c122e7
-
SHA1
f3f090730757f2c4170f36ebcd6f77f3d07aeaa1
-
SHA256
a39ef10aa1314462d43d64352fac6ee69f5aa5a7a9ac6438753f065d52acd14c
-
SHA512
a12628fbabc420c8c761f39915c8c5021bde05c441363a5334a662f6f4ca15f713dd4059afc2acda5bbc3f96341499bb80a42f6a29ba72e179e604680e7d3ee5
-
SSDEEP
98304:kFng4kWf5poWL25Runw1R8jHNLlC24QMGK/OCDJwd7/AG8/T:7y7oWL25UnwojVlCpTV2CDyd7IH
Static task
static1
Malware Config
Targets
-
-
Target
a39ef10aa1314462d43d64352fac6ee69f5aa5a7a9ac6438753f065d52acd14c
-
Size
4.1MB
-
MD5
42fc788c2f786fefa1f3140b90c122e7
-
SHA1
f3f090730757f2c4170f36ebcd6f77f3d07aeaa1
-
SHA256
a39ef10aa1314462d43d64352fac6ee69f5aa5a7a9ac6438753f065d52acd14c
-
SHA512
a12628fbabc420c8c761f39915c8c5021bde05c441363a5334a662f6f4ca15f713dd4059afc2acda5bbc3f96341499bb80a42f6a29ba72e179e604680e7d3ee5
-
SSDEEP
98304:kFng4kWf5poWL25Runw1R8jHNLlC24QMGK/OCDJwd7/AG8/T:7y7oWL25UnwojVlCpTV2CDyd7IH
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-