General
-
Target
edae2755ec7a89ed043f521f19e35754e3bbef50de9528769aadc3518e8cbfe0
-
Size
4.1MB
-
Sample
230328-s1hnfsbg73
-
MD5
882cca3c315feb813fad6aff08eaeece
-
SHA1
fef7711a6fc4c34ce8f5e7d93ff5c6ebd3ffbad8
-
SHA256
edae2755ec7a89ed043f521f19e35754e3bbef50de9528769aadc3518e8cbfe0
-
SHA512
ff41fccd223ef00a0621194ce3044217a3332c61458aeb97ae0c08c4f619c6da75bfdd1aafe5dcf7c38d63c6e21528433e2b0dcd4ecaa7aa29a9771af977e2ca
-
SSDEEP
98304:Jv8VP4qda1AwlCuF+X7nTfk2P7Px/Hvgk/7FHeVAkEdgGt0WI3TL+s:dq8fviU4x/YYeuky0V9
Static task
static1
Malware Config
Targets
-
-
Target
edae2755ec7a89ed043f521f19e35754e3bbef50de9528769aadc3518e8cbfe0
-
Size
4.1MB
-
MD5
882cca3c315feb813fad6aff08eaeece
-
SHA1
fef7711a6fc4c34ce8f5e7d93ff5c6ebd3ffbad8
-
SHA256
edae2755ec7a89ed043f521f19e35754e3bbef50de9528769aadc3518e8cbfe0
-
SHA512
ff41fccd223ef00a0621194ce3044217a3332c61458aeb97ae0c08c4f619c6da75bfdd1aafe5dcf7c38d63c6e21528433e2b0dcd4ecaa7aa29a9771af977e2ca
-
SSDEEP
98304:Jv8VP4qda1AwlCuF+X7nTfk2P7Px/Hvgk/7FHeVAkEdgGt0WI3TL+s:dq8fviU4x/YYeuky0V9
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-