Overview

overview

10

Static

static

1

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31b6a746c1f9187eeac0ab9e0faba833f0f1dcfcfe0338b3533d44b924e712fb

  • Size

    4.1MB

  • Sample

    240517-1lkhhacf56

  • MD5

    590f36ab120c258a43fc751169953c2e

  • SHA1

    afa56f53e0fa49eb4a302119d243e81d51e484bc

  • SHA256

    31b6a746c1f9187eeac0ab9e0faba833f0f1dcfcfe0338b3533d44b924e712fb

  • SHA512

    1c05c994ed42d203d5c0ca7b7eff481012aa2d984014de5930978884c88ffd84b5380ac4b1cb057a6903b6980c491003e27f417d732b6a26db697c02a258ad25

  • SSDEEP

    98304:t/1aS45wg9wCj95WS7Tld+z+RCAmv1nHALSIb:t/oSJg9H959pd0eCv1HALSs

Score
10/10
gluptebadropperevasionexecutionloader

Malware Config

Targets

    • Target

      31b6a746c1f9187eeac0ab9e0faba833f0f1dcfcfe0338b3533d44b924e712fb

    • Size

      4.1MB

    • MD5

      590f36ab120c258a43fc751169953c2e

    • SHA1

      afa56f53e0fa49eb4a302119d243e81d51e484bc

    • SHA256

      31b6a746c1f9187eeac0ab9e0faba833f0f1dcfcfe0338b3533d44b924e712fb

    • SHA512

      1c05c994ed42d203d5c0ca7b7eff481012aa2d984014de5930978884c88ffd84b5380ac4b1cb057a6903b6980c491003e27f417d732b6a26db697c02a258ad25

    • SSDEEP

      98304:t/1aS45wg9wCj95WS7Tld+z+RCAmv1nHALSIb:t/oSJg9H959pd0eCv1HALSs

    Score
    10/10
    gluptebadropperevasionexecutionloader

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba payload

    • Modifies Windows Firewall

      evasion

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks