General
-
Target
cd53db7f632f18d61863e5971bce1e286118452e18d0adb4acd059574ea56dcd
-
Size
4.2MB
-
Sample
230606-vx5d6afd2s
-
MD5
f0b04e59961e39bb62ebbca5c7efc853
-
SHA1
3606edca8d745a185437da3e77df13d7e35d0770
-
SHA256
cd53db7f632f18d61863e5971bce1e286118452e18d0adb4acd059574ea56dcd
-
SHA512
d9323c757ae1412af42f46fff8d945f25a2e9862ac153f1bea892509f58427659e45806e507ffa2b4484afa5a4a09a4954a265f66073a25cd2862c8808b46fe5
-
SSDEEP
98304:1ZWb6LD0a8dfSnswbp9eN1HIelZhKeDO/efdW8UMpwvziYHL9SEL:10YD0agSnT/eN1oel3HO1d
Static task
static1
Malware Config
Targets
-
-
Target
cd53db7f632f18d61863e5971bce1e286118452e18d0adb4acd059574ea56dcd
-
Size
4.2MB
-
MD5
f0b04e59961e39bb62ebbca5c7efc853
-
SHA1
3606edca8d745a185437da3e77df13d7e35d0770
-
SHA256
cd53db7f632f18d61863e5971bce1e286118452e18d0adb4acd059574ea56dcd
-
SHA512
d9323c757ae1412af42f46fff8d945f25a2e9862ac153f1bea892509f58427659e45806e507ffa2b4484afa5a4a09a4954a265f66073a25cd2862c8808b46fe5
-
SSDEEP
98304:1ZWb6LD0a8dfSnswbp9eN1HIelZhKeDO/efdW8UMpwvziYHL9SEL:10YD0agSnT/eN1oel3HO1d
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-