General
-
Target
e1b9a0501463b48dcd9f6bfbe15141fa9c06f828b16cd94dc530448bdd6e4270
-
Size
4.2MB
-
Sample
230608-lwxs9adh27
-
MD5
8c7b716a544449ce78eafd34bebe291c
-
SHA1
771c7c8bf5a3b2b26d7c66856f957275e59626f4
-
SHA256
e1b9a0501463b48dcd9f6bfbe15141fa9c06f828b16cd94dc530448bdd6e4270
-
SHA512
6ee579e303cb2a90f571f34821f60860d69089f4d15eadb6058238b070c9f55afce5f84ab4a6b89543044857540f8933864d6f3ec5c0a55557add5e8fc1adb83
-
SSDEEP
98304:fg/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9r:CPP/tLpge2aWzP2AcaWnZKk9r
Static task
static1
Malware Config
Targets
-
-
Target
e1b9a0501463b48dcd9f6bfbe15141fa9c06f828b16cd94dc530448bdd6e4270
-
Size
4.2MB
-
MD5
8c7b716a544449ce78eafd34bebe291c
-
SHA1
771c7c8bf5a3b2b26d7c66856f957275e59626f4
-
SHA256
e1b9a0501463b48dcd9f6bfbe15141fa9c06f828b16cd94dc530448bdd6e4270
-
SHA512
6ee579e303cb2a90f571f34821f60860d69089f4d15eadb6058238b070c9f55afce5f84ab4a6b89543044857540f8933864d6f3ec5c0a55557add5e8fc1adb83
-
SSDEEP
98304:fg/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9r:CPP/tLpge2aWzP2AcaWnZKk9r
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-