General
-
Target
7e12e47690773719093c924192e2b5dc766991152a5cb82e92ce449123809f41
-
Size
4.1MB
-
Sample
230328-31rapsff5w
-
MD5
084cee821bb6c1a5e59090efe63255cf
-
SHA1
b99763a82a84128414a663713998c21f7945dfc0
-
SHA256
7e12e47690773719093c924192e2b5dc766991152a5cb82e92ce449123809f41
-
SHA512
733244dc46869cc51606d9eba3da3a313b2d87a2ae5dea94c16a92306c4a149927feb6e94b4bc2addfb6b9ab4c6e58a33748e2f58fca6fa93104fe68ee887f06
-
SSDEEP
98304:g9KBPP4wATZUdpDaBq3Icw1Qa4TR0EJxRxOJvMxxWLE:1TAVax4c2QaYR0EJ9OJvMxh
Static task
static1
Malware Config
Targets
-
-
Target
7e12e47690773719093c924192e2b5dc766991152a5cb82e92ce449123809f41
-
Size
4.1MB
-
MD5
084cee821bb6c1a5e59090efe63255cf
-
SHA1
b99763a82a84128414a663713998c21f7945dfc0
-
SHA256
7e12e47690773719093c924192e2b5dc766991152a5cb82e92ce449123809f41
-
SHA512
733244dc46869cc51606d9eba3da3a313b2d87a2ae5dea94c16a92306c4a149927feb6e94b4bc2addfb6b9ab4c6e58a33748e2f58fca6fa93104fe68ee887f06
-
SSDEEP
98304:g9KBPP4wATZUdpDaBq3Icw1Qa4TR0EJxRxOJvMxxWLE:1TAVax4c2QaYR0EJ9OJvMxh
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-