General
-
Target
74471f5d936ab29fef35c715870178f51114f22d008688bba49ff360939d7087
-
Size
4.1MB
-
Sample
230329-l5y3nshd6v
-
MD5
de7a2dad62244bbd5d53de9e0b1ec08e
-
SHA1
e76617becb2ee62dee6bb730fb5eb338492cfcd8
-
SHA256
74471f5d936ab29fef35c715870178f51114f22d008688bba49ff360939d7087
-
SHA512
9115ee960b10c4971dfb19600cbdf96d2fdcef46c7382d5d13cf3c8e8b353c10e5ab7c93258d694ec96066891f08703b7d93f49f75816ae8717c2a4cd74afd96
-
SSDEEP
98304:dgDaCFb6F3+G/r+eLPqz9ttPc9cWMNfHla/sghWgL3zq1LwM1r:8aCl6FOG/r/Q5fdHl0sg5zzq1sM5
Static task
static1
Malware Config
Targets
-
-
Target
74471f5d936ab29fef35c715870178f51114f22d008688bba49ff360939d7087
-
Size
4.1MB
-
MD5
de7a2dad62244bbd5d53de9e0b1ec08e
-
SHA1
e76617becb2ee62dee6bb730fb5eb338492cfcd8
-
SHA256
74471f5d936ab29fef35c715870178f51114f22d008688bba49ff360939d7087
-
SHA512
9115ee960b10c4971dfb19600cbdf96d2fdcef46c7382d5d13cf3c8e8b353c10e5ab7c93258d694ec96066891f08703b7d93f49f75816ae8717c2a4cd74afd96
-
SSDEEP
98304:dgDaCFb6F3+G/r+eLPqz9ttPc9cWMNfHla/sghWgL3zq1LwM1r:8aCl6FOG/r/Q5fdHl0sg5zzq1sM5
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-