General
-
Target
4e571ac14eb37181fd2086e64638fd58283cda4a6274208dcba3f8ac1879ce2a
-
Size
4.1MB
-
Sample
230615-zbbl6sbb86
-
MD5
e71507c849eb5fb75aa733b9e1e34416
-
SHA1
203363f270d6894a52d4f57e0df9de2d6215e439
-
SHA256
4e571ac14eb37181fd2086e64638fd58283cda4a6274208dcba3f8ac1879ce2a
-
SHA512
a13e0f75b36907cfd8894dc4aaa751545962839d9d1341222a728a25dba136a18b57ffee86a54f979f13bb3e3a67957687c34d9cc61cc088e06a735862202c07
-
SSDEEP
98304:75gvbkQzx+togQWJvOnwZoVSyEekafUQXA4r:75gDk5HvfZfyEEjXz
Static task
static1
Behavioral task
behavioral1
Sample
4e571ac14eb37181fd2086e64638fd58283cda4a6274208dcba3f8ac1879ce2a.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
4e571ac14eb37181fd2086e64638fd58283cda4a6274208dcba3f8ac1879ce2a
-
Size
4.1MB
-
MD5
e71507c849eb5fb75aa733b9e1e34416
-
SHA1
203363f270d6894a52d4f57e0df9de2d6215e439
-
SHA256
4e571ac14eb37181fd2086e64638fd58283cda4a6274208dcba3f8ac1879ce2a
-
SHA512
a13e0f75b36907cfd8894dc4aaa751545962839d9d1341222a728a25dba136a18b57ffee86a54f979f13bb3e3a67957687c34d9cc61cc088e06a735862202c07
-
SSDEEP
98304:75gvbkQzx+togQWJvOnwZoVSyEekafUQXA4r:75gDk5HvfZfyEEjXz
Score10/10-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops file in System32 directory
-