General
-
Target
b519762dac98b37b17d779f5d10e45bdcc741e2afff3b4062695d1a82b2c988c
-
Size
4.2MB
-
Sample
230607-ss5g9acb77
-
MD5
6a0016787a579b431690b4fc7c66eea9
-
SHA1
4f4f206ed5d88b6bb53dbfbcf9baa81f5c28b1f2
-
SHA256
b519762dac98b37b17d779f5d10e45bdcc741e2afff3b4062695d1a82b2c988c
-
SHA512
d2c7bf06e935d2f7b2da739589f59e556b78587d6b88f617520731183e3d8c51dd3bbcf3401bcb15e733a99ded5efc1c8e7688a103221907251a07ae4992d144
-
SSDEEP
98304:oXBXbxwMASR72enw18wQxWVMeT7u+9UVKOQ5LwfsZVL:0BLxkG72BAWVJXuzQ5Lr
Static task
static1
Behavioral task
behavioral1
Sample
b519762dac98b37b17d779f5d10e45bdcc741e2afff3b4062695d1a82b2c988c.exe
Resource
win10v2004-20230221-en
Malware Config
Targets
-
-
Target
b519762dac98b37b17d779f5d10e45bdcc741e2afff3b4062695d1a82b2c988c
-
Size
4.2MB
-
MD5
6a0016787a579b431690b4fc7c66eea9
-
SHA1
4f4f206ed5d88b6bb53dbfbcf9baa81f5c28b1f2
-
SHA256
b519762dac98b37b17d779f5d10e45bdcc741e2afff3b4062695d1a82b2c988c
-
SHA512
d2c7bf06e935d2f7b2da739589f59e556b78587d6b88f617520731183e3d8c51dd3bbcf3401bcb15e733a99ded5efc1c8e7688a103221907251a07ae4992d144
-
SSDEEP
98304:oXBXbxwMASR72enw18wQxWVMeT7u+9UVKOQ5LwfsZVL:0BLxkG72BAWVJXuzQ5Lr
Score10/10-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops file in System32 directory
-