General
-
Target
ff01153d21d254a65f2bdf079eb64445dbfabd254318036189138fb4eba5cda9
-
Size
4.1MB
-
Sample
230328-bx1w7aab4x
-
MD5
2478b8bf88214472ff8c85bbb4e16a68
-
SHA1
caab53865a336d2900c92305671970482cd56a05
-
SHA256
ff01153d21d254a65f2bdf079eb64445dbfabd254318036189138fb4eba5cda9
-
SHA512
3484e8ab94d2a743b7793240fcab540de77350ca23dca277949158caaea081769872a03b1bd7960b7c65acbb5ce2fbb1d1490e5fbd02617cc24f9e20422738e6
-
SSDEEP
98304:chcDO7EgzRJZT3IHKMrqkJWE0LhQ6uMYKrk:cO/LKQqNE0W0k
Static task
static1
Malware Config
Targets
-
-
Target
ff01153d21d254a65f2bdf079eb64445dbfabd254318036189138fb4eba5cda9
-
Size
4.1MB
-
MD5
2478b8bf88214472ff8c85bbb4e16a68
-
SHA1
caab53865a336d2900c92305671970482cd56a05
-
SHA256
ff01153d21d254a65f2bdf079eb64445dbfabd254318036189138fb4eba5cda9
-
SHA512
3484e8ab94d2a743b7793240fcab540de77350ca23dca277949158caaea081769872a03b1bd7960b7c65acbb5ce2fbb1d1490e5fbd02617cc24f9e20422738e6
-
SSDEEP
98304:chcDO7EgzRJZT3IHKMrqkJWE0LhQ6uMYKrk:cO/LKQqNE0W0k
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-