glupteba | 1f3ceb20217cf0d1fc77ed0e0a2cd831ccb2a7cd9752e96fca80ae4a78a79f87 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

1f3ceb20217cf0d1fc77ed0e0a2cd831ccb2a7cd9752e96fca80ae4a78a79f87
Size

4.2MB
Sample

231210-tzpk2shdg3
MD5

51eb9dab8a218684b8460dce7bee51de
SHA1

32d98d833afed481ecac8dbb30fe2e123aa368b4
SHA256

1f3ceb20217cf0d1fc77ed0e0a2cd831ccb2a7cd9752e96fca80ae4a78a79f87
SHA512

1cf7dc218fc5860b270b8f268355c0b2cdce7b7465d233ca67baa805503ad5f98c682e2ee2d43cfd5c8b6ae09320a16a5c66086698e951161b17bff80c239266
SSDEEP

98304:KNggYyMcwJ6H8iH4RZSJS4IdntO+Cux99NlM0ZLs/4jpwSZ:SYlPJ0H4R804QsE/VZLswFwg

Score

10^/10

glupteba dropper evasion loader upx

Static task

static1

Behavioral task

behavioral1

Sample

1f3ceb20217cf0d1fc77ed0e0a2cd831ccb2a7cd9752e96fca80ae4a78a79f87.exe

Resource

win10v2004-20231127-en

glupteba dropper evasion loader upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  1f3ceb20217cf0d1fc77ed0e0a2cd831ccb2a7cd9752e96fca80ae4a78a79f87
- Size
  
  4.2MB
- MD5
  
  51eb9dab8a218684b8460dce7bee51de
- SHA1
  
  32d98d833afed481ecac8dbb30fe2e123aa368b4
- SHA256
  
  1f3ceb20217cf0d1fc77ed0e0a2cd831ccb2a7cd9752e96fca80ae4a78a79f87
- SHA512
  
  1cf7dc218fc5860b270b8f268355c0b2cdce7b7465d233ca67baa805503ad5f98c682e2ee2d43cfd5c8b6ae09320a16a5c66086698e951161b17bff80c239266
- SSDEEP
  
  98304:KNggYyMcwJ6H8iH4RZSJS4IdntO+Cux99NlM0ZLs/4jpwSZ:SYlPJ0H4R804QsE/VZLswFwg
Score

10^/10

glupteba dropper evasion loader upx
- Glupteba
  Glupteba is a modular loader written in Golang with various components.
  loader dropper glupteba
- Glupteba payload
- Modifies Windows Firewall
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Create or Modify System Process

Windows Service

Scheduled Task/Job

Privilege Escalation

Create or Modify System Process

Windows Service

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gluptebadropperevasionloaderupx

© 2018-2025

Terms | Privacy