General
-
Target
b79b066e27c1292a90d7f87dedbd906f4798077acb315e467c376a1c81849068
-
Size
4.1MB
-
Sample
230607-yq1deafh4x
-
MD5
54cd4a528696f9bb1f44a8a3b833a7d7
-
SHA1
649682be8d1e52859a5ac65db5f3a0ca40f5df1b
-
SHA256
b79b066e27c1292a90d7f87dedbd906f4798077acb315e467c376a1c81849068
-
SHA512
a1b3d83d96930de8574827b40cc3a77c9cb24c019f3ba99fb8d3b5bca4ddfa6c3b973176ef0ba2b74b50b07c7a1b2d0f957ee46715cc49fcce272fb16c471fa9
-
SSDEEP
98304:fV0kmJ+lypSNjdXPFOPJebab0px9wmc+n8YxrkbK2edAQcAs:1BUUNjSheOR48v+9dAMs
Static task
static1
Malware Config
Targets
-
-
Target
b79b066e27c1292a90d7f87dedbd906f4798077acb315e467c376a1c81849068
-
Size
4.1MB
-
MD5
54cd4a528696f9bb1f44a8a3b833a7d7
-
SHA1
649682be8d1e52859a5ac65db5f3a0ca40f5df1b
-
SHA256
b79b066e27c1292a90d7f87dedbd906f4798077acb315e467c376a1c81849068
-
SHA512
a1b3d83d96930de8574827b40cc3a77c9cb24c019f3ba99fb8d3b5bca4ddfa6c3b973176ef0ba2b74b50b07c7a1b2d0f957ee46715cc49fcce272fb16c471fa9
-
SSDEEP
98304:fV0kmJ+lypSNjdXPFOPJebab0px9wmc+n8YxrkbK2edAQcAs:1BUUNjSheOR48v+9dAMs
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-