General
-
Target
2aede77730c8f0654e4be513d12e1d440ad821dd2b08af549ca757df5896ff4e
-
Size
4.2MB
-
Sample
230608-melkbseg7x
-
MD5
3cfb4a82f33991a61f0137b825cb1bca
-
SHA1
034464b524e344675ad26562fd207aa749fbda9b
-
SHA256
2aede77730c8f0654e4be513d12e1d440ad821dd2b08af549ca757df5896ff4e
-
SHA512
be559496895284ac44e78c144a13c5de160bae3d0a4b6e2700d32273ed30c244f0fe79c375fcf27c71d56e205b5b95557557727921680a2ac697dcd81acc3060
-
SSDEEP
98304:Pg/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9D:yPP/tLpge2aWzP2AcaWnZKk9D
Static task
static1
Malware Config
Targets
-
-
Target
2aede77730c8f0654e4be513d12e1d440ad821dd2b08af549ca757df5896ff4e
-
Size
4.2MB
-
MD5
3cfb4a82f33991a61f0137b825cb1bca
-
SHA1
034464b524e344675ad26562fd207aa749fbda9b
-
SHA256
2aede77730c8f0654e4be513d12e1d440ad821dd2b08af549ca757df5896ff4e
-
SHA512
be559496895284ac44e78c144a13c5de160bae3d0a4b6e2700d32273ed30c244f0fe79c375fcf27c71d56e205b5b95557557727921680a2ac697dcd81acc3060
-
SSDEEP
98304:Pg/fHGwoT4fFLmj0g2m02naWzP2+PqzRP4VQn5X3QlY9N+h6ak9D:yPP/tLpge2aWzP2AcaWnZKk9D
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-