Overview

overview

10

Static

static

1

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f734c13b47beec8f859f1f495679d2fcb7205df940146ad656905918db8a0a15

  • Size

    4.1MB

  • Sample

    240517-lvabkacg89

  • MD5

    854e377b443dbd7d292f6f9e20040151

  • SHA1

    edd79addfa67fbbb0f585d157404f256e192aa43

  • SHA256

    f734c13b47beec8f859f1f495679d2fcb7205df940146ad656905918db8a0a15

  • SHA512

    a02d803d271775ed22cf3cbc47a1043e7ffd969ff7865f9a5d0fadd942c7a3a87cd720d4eb3cd2b07efcc62bbade342b967db526508aede6749d2f226c3a8e8e

  • SSDEEP

    98304:EhY2qRRjR1paGoDMO/b2fpl9vUYBzPUd5cvaqxgKnFtiaR:6YlRLXY4O+pXvrLaqWucE

Score
10/10
gluptebadropperevasionexecutionloaderupx

Malware Config

Targets

    • Target

      f734c13b47beec8f859f1f495679d2fcb7205df940146ad656905918db8a0a15

    • Size

      4.1MB

    • MD5

      854e377b443dbd7d292f6f9e20040151

    • SHA1

      edd79addfa67fbbb0f585d157404f256e192aa43

    • SHA256

      f734c13b47beec8f859f1f495679d2fcb7205df940146ad656905918db8a0a15

    • SHA512

      a02d803d271775ed22cf3cbc47a1043e7ffd969ff7865f9a5d0fadd942c7a3a87cd720d4eb3cd2b07efcc62bbade342b967db526508aede6749d2f226c3a8e8e

    • SSDEEP

      98304:EhY2qRRjR1paGoDMO/b2fpl9vUYBzPUd5cvaqxgKnFtiaR:6YlRLXY4O+pXvrLaqWucE

    Score
    10/10
    gluptebadropperevasionexecutionloaderupx

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba payload

    • Modifies Windows Firewall

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks