General
-
Target
899560302787f2199b72e93c74ea7d8de93e216da5fd1a631094d9b12691868a
-
Size
4.1MB
-
Sample
230328-p9bdysbb55
-
MD5
688f87ac4126b8b95f8d182acfb54a0a
-
SHA1
194fcf7c6975f861792a16dc5820c1b76a426aa4
-
SHA256
899560302787f2199b72e93c74ea7d8de93e216da5fd1a631094d9b12691868a
-
SHA512
28b59efcb21bc48a04a877d88d4d9df10c7f1d5b0bed85396695f4399b6054c12f96ca3ae163f7b890931fee94dca9a00fa2406bfd2ac64305332679d0aaa99d
-
SSDEEP
98304:a4LaDeNSuyCmO874np0mdKzD7v784No7HRz4M8yO6ABNu:rL2eNS5OY4nlKD7v78uorR07y
Static task
static1
Malware Config
Targets
-
-
Target
899560302787f2199b72e93c74ea7d8de93e216da5fd1a631094d9b12691868a
-
Size
4.1MB
-
MD5
688f87ac4126b8b95f8d182acfb54a0a
-
SHA1
194fcf7c6975f861792a16dc5820c1b76a426aa4
-
SHA256
899560302787f2199b72e93c74ea7d8de93e216da5fd1a631094d9b12691868a
-
SHA512
28b59efcb21bc48a04a877d88d4d9df10c7f1d5b0bed85396695f4399b6054c12f96ca3ae163f7b890931fee94dca9a00fa2406bfd2ac64305332679d0aaa99d
-
SSDEEP
98304:a4LaDeNSuyCmO874np0mdKzD7v784No7HRz4M8yO6ABNu:rL2eNS5OY4nlKD7v78uorR07y
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-