General
-
Target
3a927642327ea0d858764834d4666a796d57834dd1e992a153da6198cf606e89
-
Size
4.1MB
-
Sample
230327-ww94paef86
-
MD5
9e72ce3c2bf266f37a62d4115a52b3f9
-
SHA1
662a7f9cb179881ea1d683dbe340542fc21ef521
-
SHA256
3a927642327ea0d858764834d4666a796d57834dd1e992a153da6198cf606e89
-
SHA512
ef7fcd444e4c5624fd798131991d78c90491b734f66b5c0b74a401f406a47865a7799688815145254d630066c172d2cc0d549d7707e260713dfd741a371e6154
-
SSDEEP
98304:CR4aIsqGXrMM5+XC79bek6AV6rp64timIOdgjmBZlYVyYA2:42RGgM5+y7kk6AV6/LIygjgZ2Vp
Static task
static1
Malware Config
Targets
-
-
Target
3a927642327ea0d858764834d4666a796d57834dd1e992a153da6198cf606e89
-
Size
4.1MB
-
MD5
9e72ce3c2bf266f37a62d4115a52b3f9
-
SHA1
662a7f9cb179881ea1d683dbe340542fc21ef521
-
SHA256
3a927642327ea0d858764834d4666a796d57834dd1e992a153da6198cf606e89
-
SHA512
ef7fcd444e4c5624fd798131991d78c90491b734f66b5c0b74a401f406a47865a7799688815145254d630066c172d2cc0d549d7707e260713dfd741a371e6154
-
SSDEEP
98304:CR4aIsqGXrMM5+XC79bek6AV6rp64timIOdgjmBZlYVyYA2:42RGgM5+y7kk6AV6/LIygjgZ2Vp
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-