General
-
Target
e1ca02d75d5823cff778f201aa89bfe7f2766af87c7f6d0037600acb13315b74
-
Size
4.1MB
-
Sample
230328-t7capaca58
-
MD5
722aabd4b12009abf5ad3858cffb4ee8
-
SHA1
2957278dd50cc6efbebe392458ae7632ac5aed53
-
SHA256
e1ca02d75d5823cff778f201aa89bfe7f2766af87c7f6d0037600acb13315b74
-
SHA512
cec4e5c635e66f30bb54319487cb3e193e6ff1071520be12c9a996c1f1be1bb36ffa470389b27aba28d03bf10b6f94e84deb35f589da6083de9816e1b38c882c
-
SSDEEP
98304:zFkiC6Dxkh193M37JyWckqXzjOES7r9ojcGWjOKoK:RkiCcxkJM34WcfNSNSUsK
Static task
static1
Malware Config
Targets
-
-
Target
e1ca02d75d5823cff778f201aa89bfe7f2766af87c7f6d0037600acb13315b74
-
Size
4.1MB
-
MD5
722aabd4b12009abf5ad3858cffb4ee8
-
SHA1
2957278dd50cc6efbebe392458ae7632ac5aed53
-
SHA256
e1ca02d75d5823cff778f201aa89bfe7f2766af87c7f6d0037600acb13315b74
-
SHA512
cec4e5c635e66f30bb54319487cb3e193e6ff1071520be12c9a996c1f1be1bb36ffa470389b27aba28d03bf10b6f94e84deb35f589da6083de9816e1b38c882c
-
SSDEEP
98304:zFkiC6Dxkh193M37JyWckqXzjOES7r9ojcGWjOKoK:RkiCcxkJM34WcfNSNSUsK
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-