General
-
Target
694c763fe4bc19f7a362803ab8fadceec929ef3b2416889b8fcaee427134e9aa
-
Size
4.2MB
-
Sample
230608-p67b8afe32
-
MD5
46d5112c720eec82bdc6d7d51bd89953
-
SHA1
a499dac5694bdcdc44846b8aba778e1c353fa5ee
-
SHA256
694c763fe4bc19f7a362803ab8fadceec929ef3b2416889b8fcaee427134e9aa
-
SHA512
e2e8ecd7a36a8d7bb52a614cf41581f813dc0d21b2c3e9fac94cbbf8788b2e4fbf0bead205d8bf47ccf91d2f38e56eaa26ad41fcffbba7531df85a11c6f125ed
-
SSDEEP
98304:14Oukmwozu5N1sjvc6C5HzAFpDV4v2Gff887WFFSEVpe1l6UqT5uNl:Mxw0u5Xsj06C5HzAFtV4vjftWfSDTd4M
Static task
static1
Malware Config
Targets
-
-
Target
694c763fe4bc19f7a362803ab8fadceec929ef3b2416889b8fcaee427134e9aa
-
Size
4.2MB
-
MD5
46d5112c720eec82bdc6d7d51bd89953
-
SHA1
a499dac5694bdcdc44846b8aba778e1c353fa5ee
-
SHA256
694c763fe4bc19f7a362803ab8fadceec929ef3b2416889b8fcaee427134e9aa
-
SHA512
e2e8ecd7a36a8d7bb52a614cf41581f813dc0d21b2c3e9fac94cbbf8788b2e4fbf0bead205d8bf47ccf91d2f38e56eaa26ad41fcffbba7531df85a11c6f125ed
-
SSDEEP
98304:14Oukmwozu5N1sjvc6C5HzAFpDV4v2Gff887WFFSEVpe1l6UqT5uNl:Mxw0u5Xsj06C5HzAFtV4vjftWfSDTd4M
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-