General
-
Target
0f09cda53ae0f252684678b2475615396e84100652c1484c8785d5f9996fa23b
-
Size
4.1MB
-
Sample
230327-gm7vmsea5w
-
MD5
a8d31013df540ed6368b4b1f0aa18b45
-
SHA1
0dfd4cd4af8c9a5f3606b5d24fa56051f5348b1c
-
SHA256
0f09cda53ae0f252684678b2475615396e84100652c1484c8785d5f9996fa23b
-
SHA512
b6733ff12c6bcde0dfa6b279aaacd07ed4d69fcd0b2d2bd054907515a9f390301e019561217ecd23c3a226b15d70f3e6d3fc608cd208ba43efd89834064690d2
-
SSDEEP
98304:jD+y4IXZOqgU5JyE7PRbQEPNsEAJADBcdt5msG7q3W9WVlD:H5rJyfiVKRMBcNDG7q3W+
Static task
static1
Malware Config
Targets
-
-
Target
0f09cda53ae0f252684678b2475615396e84100652c1484c8785d5f9996fa23b
-
Size
4.1MB
-
MD5
a8d31013df540ed6368b4b1f0aa18b45
-
SHA1
0dfd4cd4af8c9a5f3606b5d24fa56051f5348b1c
-
SHA256
0f09cda53ae0f252684678b2475615396e84100652c1484c8785d5f9996fa23b
-
SHA512
b6733ff12c6bcde0dfa6b279aaacd07ed4d69fcd0b2d2bd054907515a9f390301e019561217ecd23c3a226b15d70f3e6d3fc608cd208ba43efd89834064690d2
-
SSDEEP
98304:jD+y4IXZOqgU5JyE7PRbQEPNsEAJADBcdt5msG7q3W9WVlD:H5rJyfiVKRMBcNDG7q3W+
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-