General
-
Target
f4c8aebcbd2dbbb2914452a3c4b723f6af3fd55e2217d6d942fbed0c4c846a56
-
Size
4.2MB
-
Sample
230608-lqy45aed3z
-
MD5
326009345bc3146aa15238159c5b1a2c
-
SHA1
bfa8872f866cb75de7ffcd47bbbdd97f7d15ac3c
-
SHA256
f4c8aebcbd2dbbb2914452a3c4b723f6af3fd55e2217d6d942fbed0c4c846a56
-
SHA512
d2a323148ae3c9f18536641325967a2e25634dc1a1455dcb687b82ff7411506e2bb15bcd118e60b98810e00930ab3977dde1179ed17703d902bf6d721587be00
-
SSDEEP
98304:3g/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9f:aPP/tLpge2aWzP2AcaWnZKk9f
Static task
static1
Malware Config
Targets
-
-
Target
f4c8aebcbd2dbbb2914452a3c4b723f6af3fd55e2217d6d942fbed0c4c846a56
-
Size
4.2MB
-
MD5
326009345bc3146aa15238159c5b1a2c
-
SHA1
bfa8872f866cb75de7ffcd47bbbdd97f7d15ac3c
-
SHA256
f4c8aebcbd2dbbb2914452a3c4b723f6af3fd55e2217d6d942fbed0c4c846a56
-
SHA512
d2a323148ae3c9f18536641325967a2e25634dc1a1455dcb687b82ff7411506e2bb15bcd118e60b98810e00930ab3977dde1179ed17703d902bf6d721587be00
-
SSDEEP
98304:3g/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9f:aPP/tLpge2aWzP2AcaWnZKk9f
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-