General
-
Target
b7dc4fe82b19ae59cd37c3e67133fe6b2630e55dce469755cce964abad559144
-
Size
4.2MB
-
Sample
230607-x8yrvsfa45
-
MD5
1c2b198ecc4592723d53381aa40145db
-
SHA1
5cec26643aa0f5c4156c6d836e8f3130f383a93b
-
SHA256
b7dc4fe82b19ae59cd37c3e67133fe6b2630e55dce469755cce964abad559144
-
SHA512
50d7437147a7c6584935c781795f5e4524227cd9038b584b75470e2a0f56ac4fc7c378814030eafd53321ce516974a02fc49d2d96d0211b0a1c45211218eadd7
-
SSDEEP
98304:d7xlQWUQJrx/VpUx5jTm4qCa4aWdF3j0chnIX4rR2:Rxqd9YP+rjRfV2
Static task
static1
Malware Config
Targets
-
-
Target
b7dc4fe82b19ae59cd37c3e67133fe6b2630e55dce469755cce964abad559144
-
Size
4.2MB
-
MD5
1c2b198ecc4592723d53381aa40145db
-
SHA1
5cec26643aa0f5c4156c6d836e8f3130f383a93b
-
SHA256
b7dc4fe82b19ae59cd37c3e67133fe6b2630e55dce469755cce964abad559144
-
SHA512
50d7437147a7c6584935c781795f5e4524227cd9038b584b75470e2a0f56ac4fc7c378814030eafd53321ce516974a02fc49d2d96d0211b0a1c45211218eadd7
-
SSDEEP
98304:d7xlQWUQJrx/VpUx5jTm4qCa4aWdF3j0chnIX4rR2:Rxqd9YP+rjRfV2
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-