General
-
Target
deb6998300120cd6d333f3fab96678baa7a3ce2a343f0d7ec809d26f2d71f0f6
-
Size
4.2MB
-
Sample
230608-lr4q1aed4z
-
MD5
895e4c45435eea960d60afeccb1193be
-
SHA1
4d769d80421f463ac7dcdb6cad69fc8e1a36de07
-
SHA256
deb6998300120cd6d333f3fab96678baa7a3ce2a343f0d7ec809d26f2d71f0f6
-
SHA512
d7685f5ee6cdbc00fd57ae3beb4dbb0e406b9e88540365083cf9cf806b3f9dc9703ea99704fd9aeb2740d4e9493544396e75ed968efe057e39329f70fd2c38fc
-
SSDEEP
98304:fg/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9T:CPP/tLpge2aWzP2AcaWnZKk9T
Static task
static1
Malware Config
Targets
-
-
Target
deb6998300120cd6d333f3fab96678baa7a3ce2a343f0d7ec809d26f2d71f0f6
-
Size
4.2MB
-
MD5
895e4c45435eea960d60afeccb1193be
-
SHA1
4d769d80421f463ac7dcdb6cad69fc8e1a36de07
-
SHA256
deb6998300120cd6d333f3fab96678baa7a3ce2a343f0d7ec809d26f2d71f0f6
-
SHA512
d7685f5ee6cdbc00fd57ae3beb4dbb0e406b9e88540365083cf9cf806b3f9dc9703ea99704fd9aeb2740d4e9493544396e75ed968efe057e39329f70fd2c38fc
-
SSDEEP
98304:fg/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9T:CPP/tLpge2aWzP2AcaWnZKk9T
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-