General
-
Target
6f08dc0be8b17f57e778022682c647f8d822257395a25edbc47ab883430b3bd5
-
Size
4.2MB
-
Sample
230608-glc9mscg62
-
MD5
e8d7e386c15e2ad660b0383ca1b4e44c
-
SHA1
72c5294672524c0f28a4cd8b895ca1b129eb2ddb
-
SHA256
6f08dc0be8b17f57e778022682c647f8d822257395a25edbc47ab883430b3bd5
-
SHA512
b265878d7a889edabba862c45f9fa6349d1550a8d9047932e3eb1c4a87115358cf6b2ec8e36bc064b4da5563fd1365181511c2519313dc90b170d9a9f436cb8b
-
SSDEEP
98304:UL9MLJ4yT5nBpJLCTRLHuTMeBrhT8sCKfL71koaM:A9SJ4yTnCtCAbspfvRaM
Static task
static1
Malware Config
Targets
-
-
Target
6f08dc0be8b17f57e778022682c647f8d822257395a25edbc47ab883430b3bd5
-
Size
4.2MB
-
MD5
e8d7e386c15e2ad660b0383ca1b4e44c
-
SHA1
72c5294672524c0f28a4cd8b895ca1b129eb2ddb
-
SHA256
6f08dc0be8b17f57e778022682c647f8d822257395a25edbc47ab883430b3bd5
-
SHA512
b265878d7a889edabba862c45f9fa6349d1550a8d9047932e3eb1c4a87115358cf6b2ec8e36bc064b4da5563fd1365181511c2519313dc90b170d9a9f436cb8b
-
SSDEEP
98304:UL9MLJ4yT5nBpJLCTRLHuTMeBrhT8sCKfL71koaM:A9SJ4yTnCtCAbspfvRaM
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-