General
-
Target
c392f8cf2d78125d928172af6e32dc4d13229d8c09adc07958fc602b7795298f
-
Size
4.2MB
-
Sample
230607-j4dz1ahb88
-
MD5
399bf22588ca76a259484288219e28dd
-
SHA1
8adab4de6804ce07e4f84e599793dae76e03bbe7
-
SHA256
c392f8cf2d78125d928172af6e32dc4d13229d8c09adc07958fc602b7795298f
-
SHA512
f2e573c081397766e3e74c65be8ab684b7ef10d54029163b48f312eddba53e3e677db14d8a773922e3d6c227d48f5386ad5e5f780a725557db53de87b2ffd544
-
SSDEEP
98304:dDpOZQJuC/XgnbxpPY15ehxqRDcyHzCkKrqxPLEPecklCySdVg:dDouuEXgnbxu1wiRDvT8rqBsQCySdm
Static task
static1
Malware Config
Targets
-
-
Target
c392f8cf2d78125d928172af6e32dc4d13229d8c09adc07958fc602b7795298f
-
Size
4.2MB
-
MD5
399bf22588ca76a259484288219e28dd
-
SHA1
8adab4de6804ce07e4f84e599793dae76e03bbe7
-
SHA256
c392f8cf2d78125d928172af6e32dc4d13229d8c09adc07958fc602b7795298f
-
SHA512
f2e573c081397766e3e74c65be8ab684b7ef10d54029163b48f312eddba53e3e677db14d8a773922e3d6c227d48f5386ad5e5f780a725557db53de87b2ffd544
-
SSDEEP
98304:dDpOZQJuC/XgnbxpPY15ehxqRDcyHzCkKrqxPLEPecklCySdVg:dDouuEXgnbxu1wiRDvT8rqBsQCySdm
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-