General
-
Target
eee0d3d0e69fa34654351f8b2b270caa68d86effe65af32118c0d9c21e13a729
-
Size
4.2MB
-
Sample
230607-ppldesad87
-
MD5
d7b7595b182a97e3db85ff680054c605
-
SHA1
d0015999ee2b61848e715231691dac5d929e3a92
-
SHA256
eee0d3d0e69fa34654351f8b2b270caa68d86effe65af32118c0d9c21e13a729
-
SHA512
7ac490152a44a20ed52f145116a83a97781bece5f2a4e1afbadfe543d35302ae734ec2b76e501c6417ca6dec5846529f25747e664c7077a5291c55f00f4f2405
-
SSDEEP
98304:3+ryqTX39hhVlc5LB/2OriIoNKDqzuQVp20mFyby7:3+fntQLB/2OfoNK2tm5
Static task
static1
Malware Config
Targets
-
-
Target
eee0d3d0e69fa34654351f8b2b270caa68d86effe65af32118c0d9c21e13a729
-
Size
4.2MB
-
MD5
d7b7595b182a97e3db85ff680054c605
-
SHA1
d0015999ee2b61848e715231691dac5d929e3a92
-
SHA256
eee0d3d0e69fa34654351f8b2b270caa68d86effe65af32118c0d9c21e13a729
-
SHA512
7ac490152a44a20ed52f145116a83a97781bece5f2a4e1afbadfe543d35302ae734ec2b76e501c6417ca6dec5846529f25747e664c7077a5291c55f00f4f2405
-
SSDEEP
98304:3+ryqTX39hhVlc5LB/2OriIoNKDqzuQVp20mFyby7:3+fntQLB/2OfoNK2tm5
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-