General
-
Target
8047976a57a30b3f3cf7a58525e7141b3bc0c3cf9d96f0d2aaeb3855c5ad55c8
-
Size
4.1MB
-
Sample
230326-kq9eeshh6x
-
MD5
0dd33df1b1ae63f62aae798dca14d0b2
-
SHA1
05d583463646b148b78f0021716a096f0a45d1e8
-
SHA256
8047976a57a30b3f3cf7a58525e7141b3bc0c3cf9d96f0d2aaeb3855c5ad55c8
-
SHA512
f92253634e43c1ee37c91e967c5a68992395f7532847dbbe30cf74a17bae779605f92d70127581e38a21a7ec81f84f9c5e910d107001cdfc041f9d054a0add1c
-
SSDEEP
98304:UJGuGQT8aMKjrMfGWIAr7VsBzN6ZWmHsuD6pLGepgKs:UwuGQQaLAhNw5296lGUgx
Static task
static1
Malware Config
Targets
-
-
Target
8047976a57a30b3f3cf7a58525e7141b3bc0c3cf9d96f0d2aaeb3855c5ad55c8
-
Size
4.1MB
-
MD5
0dd33df1b1ae63f62aae798dca14d0b2
-
SHA1
05d583463646b148b78f0021716a096f0a45d1e8
-
SHA256
8047976a57a30b3f3cf7a58525e7141b3bc0c3cf9d96f0d2aaeb3855c5ad55c8
-
SHA512
f92253634e43c1ee37c91e967c5a68992395f7532847dbbe30cf74a17bae779605f92d70127581e38a21a7ec81f84f9c5e910d107001cdfc041f9d054a0add1c
-
SSDEEP
98304:UJGuGQT8aMKjrMfGWIAr7VsBzN6ZWmHsuD6pLGepgKs:UwuGQQaLAhNw5296lGUgx
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-