Overview

overview

10

Static

static

1

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Analysis

  • max time kernel
    4s
  • platform
    windows11-21h2_x64
  • resource
    win11-20240419-en
  • resource tags

    arch:x64arch:x86image:win11-20240419-enlocale:en-usos:windows11-21h2-x64system
  • submitted
    11-05-2024 11:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    85ca99f4504bac20558578ed58524b7a24cf3e12ff574fc3b290f2d98ab9393a.exe

  • Size

    4.1MB

  • MD5

    ba50234acf5b288755d549babe81ed0f

  • SHA1

    27b1bb0e967cf0b0882599fa00a21b36a36c3c56

  • SHA256

    85ca99f4504bac20558578ed58524b7a24cf3e12ff574fc3b290f2d98ab9393a

  • SHA512

    6c0408dcf73ad99b92c76962a591f77cd861b322a7475cfa589ca2af5b7a9ab409404c51943e3bc2578ae986a35927bf3fb73489896ca706be8cad5a80848d6d

  • SSDEEP

    98304:daldxVYbeltggr6p7qKtgoJu9O6Qxc6qPeInuZKahKn+3QP:yxq6ggrt/os9O/WxuFhK+AP

Score
10/10
gluptebadropperloader

Malware Config

Signatures

  • Glupteba

    Glupteba is a modular loader written in Golang with various components.

    loaderdropperglupteba
  • Glupteba payload 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\85ca99f4504bac20558578ed58524b7a24cf3e12ff574fc3b290f2d98ab9393a.exe
    "C:\Users\Admin\AppData\Local\Temp\85ca99f4504bac20558578ed58524b7a24cf3e12ff574fc3b290f2d98ab9393a.exe"
    1⤵
      PID:260

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/260-1-0x00000000046A0000-0x0000000004A9D000-memory.dmp
      Filesize

      4.0MB

      Download
    • memory/260-2-0x0000000004AA0000-0x000000000538B000-memory.dmp
      Filesize

      8.9MB

      Download
    • memory/260-3-0x0000000000400000-0x0000000000D1C000-memory.dmp
      Filesize

      9.1MB

      Download