General

  • Target

    72a115f25006eef0b5762b7ef5e8644d13eb1a42a8d0fbaeefab1e07f7b34c64

  • Size

    4.2MB

  • Sample

    240417-3hhkvahf75

  • MD5

    281f44c8c6f0cfbc293e1fdb8b3ee782

  • SHA1

    cb1abaa337d77c1b8ae1502ae0c8b47027ee7fa7

  • SHA256

    72a115f25006eef0b5762b7ef5e8644d13eb1a42a8d0fbaeefab1e07f7b34c64

  • SHA512

    cba42b82a2d84872abb45975852db340e8deaf3f9d965191b0e73b8186d1d2a42c7dd4f74ea1c740e9d0f363285d2e637ab71e51d8ad0edf6fe7a993b53c8fc4

  • SSDEEP

    98304:KkZ2HRjDxUqNRSWw/fdG0ya8lhbNKCN+OMuHRmn++CozeYuDm:LZ2x3CqNcHdGTLNp+F+8elDm

Malware Config

Targets

    • Target

      72a115f25006eef0b5762b7ef5e8644d13eb1a42a8d0fbaeefab1e07f7b34c64

    • Size

      4.2MB

    • MD5

      281f44c8c6f0cfbc293e1fdb8b3ee782

    • SHA1

      cb1abaa337d77c1b8ae1502ae0c8b47027ee7fa7

    • SHA256

      72a115f25006eef0b5762b7ef5e8644d13eb1a42a8d0fbaeefab1e07f7b34c64

    • SHA512

      cba42b82a2d84872abb45975852db340e8deaf3f9d965191b0e73b8186d1d2a42c7dd4f74ea1c740e9d0f363285d2e637ab71e51d8ad0edf6fe7a993b53c8fc4

    • SSDEEP

      98304:KkZ2HRjDxUqNRSWw/fdG0ya8lhbNKCN+OMuHRmn++CozeYuDm:LZ2x3CqNcHdGTLNp+F+8elDm

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

    • Glupteba payload

    • Modifies Windows Firewall

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks