General
-
Target
7627771e6697031d2eec565c83b5719f45c70d6c3270c203359e26fe06a7a137
-
Size
4.2MB
-
Sample
230608-k2d3naea3z
-
MD5
44f1cc396be7a985a9ce724de1095fb5
-
SHA1
3b7650d920b97c8e3787d436425e71b6e021ea42
-
SHA256
7627771e6697031d2eec565c83b5719f45c70d6c3270c203359e26fe06a7a137
-
SHA512
fac259029e9110ac10ee2e91e2538335f3038b21c7435b8a2296e8407b01ae15d3777721d286b5e2751de419048463e893b65a2e4d80c04ea22052b520c648c9
-
SSDEEP
98304:I665c4JG+W/h83fz+KjxdfuAXgrXpt7huI665dX5yd9u:Ijc4JcKDjWj3hRW9u
Static task
static1
Malware Config
Targets
-
-
Target
7627771e6697031d2eec565c83b5719f45c70d6c3270c203359e26fe06a7a137
-
Size
4.2MB
-
MD5
44f1cc396be7a985a9ce724de1095fb5
-
SHA1
3b7650d920b97c8e3787d436425e71b6e021ea42
-
SHA256
7627771e6697031d2eec565c83b5719f45c70d6c3270c203359e26fe06a7a137
-
SHA512
fac259029e9110ac10ee2e91e2538335f3038b21c7435b8a2296e8407b01ae15d3777721d286b5e2751de419048463e893b65a2e4d80c04ea22052b520c648c9
-
SSDEEP
98304:I665c4JG+W/h83fz+KjxdfuAXgrXpt7huI665dX5yd9u:Ijc4JcKDjWj3hRW9u
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-