General
-
Target
6c802135a37db67e60a254382f3a3075ec54025ffdda8c09b5da555f9d4a83d2
-
Size
4.2MB
-
Sample
230607-fhzg2agh54
-
MD5
ed5c87772a5712ca9aabfef82435f7b2
-
SHA1
ed5c90d94f9ee59ee52d4cf977e97b9423f23732
-
SHA256
6c802135a37db67e60a254382f3a3075ec54025ffdda8c09b5da555f9d4a83d2
-
SHA512
1bca97953981156be76082c580f5e8b4a34d656d191bd92118670e2fae321e9090754ef0cac920c6cfde015ad182efe247dff0e2f9c64368d6983582e3ab1083
-
SSDEEP
98304:+wxLTHiVfND5jI8y46oyWY2H3chRPWTrgRgGL/Yh55yA:+wxHode46pGHKwrgacy5b
Static task
static1
Malware Config
Targets
-
-
Target
6c802135a37db67e60a254382f3a3075ec54025ffdda8c09b5da555f9d4a83d2
-
Size
4.2MB
-
MD5
ed5c87772a5712ca9aabfef82435f7b2
-
SHA1
ed5c90d94f9ee59ee52d4cf977e97b9423f23732
-
SHA256
6c802135a37db67e60a254382f3a3075ec54025ffdda8c09b5da555f9d4a83d2
-
SHA512
1bca97953981156be76082c580f5e8b4a34d656d191bd92118670e2fae321e9090754ef0cac920c6cfde015ad182efe247dff0e2f9c64368d6983582e3ab1083
-
SSDEEP
98304:+wxLTHiVfND5jI8y46oyWY2H3chRPWTrgRgGL/Yh55yA:+wxHode46pGHKwrgacy5b
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-