General
-
Target
632d93e1cce065f27da910812cbca955dc29ea2fea17180e422b3156f298c3ed
-
Size
4.2MB
-
Sample
240426-3rfslsfd8v
-
MD5
7da7ede4652d1f83d258f4b2b4318715
-
SHA1
178e97e68d84c12aa8a6142fc00dae658dc8d00f
-
SHA256
632d93e1cce065f27da910812cbca955dc29ea2fea17180e422b3156f298c3ed
-
SHA512
c7eb0ff70bb0e728d33ac67dab85fc5ab9d08489a8ce78682a94bdcd621cc1a47f86af89a80b2c55696d2427fa1fda73b8aef079973369c2b57a133d5c369fd2
-
SSDEEP
98304:YkAjdDPAeC2B02wyEqB4QU18FBwX92iJvUa6o386BoSeiwZU4mjQxQD:TuPAV2B0NRqB88FqJvA6j4GQe
Static task
static1
Behavioral task
behavioral1
Sample
632d93e1cce065f27da910812cbca955dc29ea2fea17180e422b3156f298c3ed.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
632d93e1cce065f27da910812cbca955dc29ea2fea17180e422b3156f298c3ed
-
Size
4.2MB
-
MD5
7da7ede4652d1f83d258f4b2b4318715
-
SHA1
178e97e68d84c12aa8a6142fc00dae658dc8d00f
-
SHA256
632d93e1cce065f27da910812cbca955dc29ea2fea17180e422b3156f298c3ed
-
SHA512
c7eb0ff70bb0e728d33ac67dab85fc5ab9d08489a8ce78682a94bdcd621cc1a47f86af89a80b2c55696d2427fa1fda73b8aef079973369c2b57a133d5c369fd2
-
SSDEEP
98304:YkAjdDPAeC2B02wyEqB4QU18FBwX92iJvUa6o386BoSeiwZU4mjQxQD:TuPAV2B0NRqB88FqJvA6j4GQe
-
Glupteba payload
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1