General
-
Target
d20831daf82bf9482b5cf19bded4d00e68594a5ad1475b61a4bc73c1e837d498
-
Size
4.2MB
-
Sample
230608-pwr5jsga9x
-
MD5
0a951d37fb2c56a609059c96c4e1f058
-
SHA1
f7ecacabd84eb5651d8710bf4d8f2d21eca6d49c
-
SHA256
d20831daf82bf9482b5cf19bded4d00e68594a5ad1475b61a4bc73c1e837d498
-
SHA512
20f9805d5c7dd38a83fc8ae347da3237140278406d56180733d0bd3ef73d3eec822e89afe610bb84018f1a189781e69956a3a3bcdc2c6adf7ea64fdb90bea35a
-
SSDEEP
98304:14Oukmwozu5N1sjvc6C5HzAFpDV4v2Gff887WFFSEVpe1l6UqT5uNF:Mxw0u5Xsj06C5HzAFtV4vjftWfSDTd4U
Static task
static1
Malware Config
Targets
-
-
Target
d20831daf82bf9482b5cf19bded4d00e68594a5ad1475b61a4bc73c1e837d498
-
Size
4.2MB
-
MD5
0a951d37fb2c56a609059c96c4e1f058
-
SHA1
f7ecacabd84eb5651d8710bf4d8f2d21eca6d49c
-
SHA256
d20831daf82bf9482b5cf19bded4d00e68594a5ad1475b61a4bc73c1e837d498
-
SHA512
20f9805d5c7dd38a83fc8ae347da3237140278406d56180733d0bd3ef73d3eec822e89afe610bb84018f1a189781e69956a3a3bcdc2c6adf7ea64fdb90bea35a
-
SSDEEP
98304:14Oukmwozu5N1sjvc6C5HzAFpDV4v2Gff887WFFSEVpe1l6UqT5uNF:Mxw0u5Xsj06C5HzAFtV4vjftWfSDTd4U
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-