General
-
Target
e7ada8d8e2e9b0142835438a921f5f771182b8c1fcd63ccb96e22a8054e442b4
-
Size
4.1MB
-
Sample
230327-r2g8msdh62
-
MD5
2b679b2e58f2419a4769fd526bc78a62
-
SHA1
70f96b9ff936e7bf2ab9be36da596d72e405e247
-
SHA256
e7ada8d8e2e9b0142835438a921f5f771182b8c1fcd63ccb96e22a8054e442b4
-
SHA512
d7b61ca2f6635e2e0f458b704b432543fb8347e2e9896adc7b3f3e4920820fa54d86bb5f9c40b1653abac9fa22ff537cf7fa956f693a59b016fd88189a3ad9cf
-
SSDEEP
98304:WwBHi5FsLxkWyDJ6to4G4vUv6ywdiLJHCt4xilFJ8A1vE:7C4GDcGf1vJwIAqKPdE
Static task
static1
Malware Config
Targets
-
-
Target
e7ada8d8e2e9b0142835438a921f5f771182b8c1fcd63ccb96e22a8054e442b4
-
Size
4.1MB
-
MD5
2b679b2e58f2419a4769fd526bc78a62
-
SHA1
70f96b9ff936e7bf2ab9be36da596d72e405e247
-
SHA256
e7ada8d8e2e9b0142835438a921f5f771182b8c1fcd63ccb96e22a8054e442b4
-
SHA512
d7b61ca2f6635e2e0f458b704b432543fb8347e2e9896adc7b3f3e4920820fa54d86bb5f9c40b1653abac9fa22ff537cf7fa956f693a59b016fd88189a3ad9cf
-
SSDEEP
98304:WwBHi5FsLxkWyDJ6to4G4vUv6ywdiLJHCt4xilFJ8A1vE:7C4GDcGf1vJwIAqKPdE
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-