General
-
Target
19a4d48f7ecb5d3109a8f4151755c0ceaab4c948f5fe54153add7e7986c00b02
-
Size
4.2MB
-
Sample
230606-s9hptaee29
-
MD5
1d4cdcdef2f48dd0f02d06ba6b609857
-
SHA1
0205415ab912793ac7001a37f4acb547e35d7121
-
SHA256
19a4d48f7ecb5d3109a8f4151755c0ceaab4c948f5fe54153add7e7986c00b02
-
SHA512
3396284bf5889fd34777d5ff1eb1db39b793552a0fc183bc37db156569077c6dd5f7fbdd61dea842184ff64e1ac98a59a81bbe9b926ab8ee698746c7ba15c084
-
SSDEEP
98304:CwD61FoiFrV4uHNu/sjTzLLpvUtDefKLGgjrGTOuAY96q:Ct1FoixHNu/sj/LLpMtLbbulN
Static task
static1
Malware Config
Targets
-
-
Target
19a4d48f7ecb5d3109a8f4151755c0ceaab4c948f5fe54153add7e7986c00b02
-
Size
4.2MB
-
MD5
1d4cdcdef2f48dd0f02d06ba6b609857
-
SHA1
0205415ab912793ac7001a37f4acb547e35d7121
-
SHA256
19a4d48f7ecb5d3109a8f4151755c0ceaab4c948f5fe54153add7e7986c00b02
-
SHA512
3396284bf5889fd34777d5ff1eb1db39b793552a0fc183bc37db156569077c6dd5f7fbdd61dea842184ff64e1ac98a59a81bbe9b926ab8ee698746c7ba15c084
-
SSDEEP
98304:CwD61FoiFrV4uHNu/sjTzLLpvUtDefKLGgjrGTOuAY96q:Ct1FoixHNu/sj/LLpMtLbbulN
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-