Overview

overview

10

Static

static

1

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e976a1972323f0a4050129f375edf3c74b19587f4c42685d780f87755538dfee

  • Size

    4.1MB

  • Sample

    240518-nnnayshd81

  • MD5

    a12de8c9a4b6d27e50759de42f5d4431

  • SHA1

    94adcdfc90c5c36f9df5062ebdde51deeae632d2

  • SHA256

    e976a1972323f0a4050129f375edf3c74b19587f4c42685d780f87755538dfee

  • SHA512

    d474f7ac01279399d084805f9cf8abf82cad14aeb27127edb0ce9198c966536b6d6e9a840038191f193cae3f6f203de278a2b1746cb1a3bce466f1d728422002

  • SSDEEP

    98304:4Z9bi3QNEOtUId2petU9sYIhWVMAA4+H7:R303UIApyYIhWVMEy

Score
10/10
gluptebadropperevasionexecutionloaderupx

Malware Config

Targets

    • Target

      e976a1972323f0a4050129f375edf3c74b19587f4c42685d780f87755538dfee

    • Size

      4.1MB

    • MD5

      a12de8c9a4b6d27e50759de42f5d4431

    • SHA1

      94adcdfc90c5c36f9df5062ebdde51deeae632d2

    • SHA256

      e976a1972323f0a4050129f375edf3c74b19587f4c42685d780f87755538dfee

    • SHA512

      d474f7ac01279399d084805f9cf8abf82cad14aeb27127edb0ce9198c966536b6d6e9a840038191f193cae3f6f203de278a2b1746cb1a3bce466f1d728422002

    • SSDEEP

      98304:4Z9bi3QNEOtUId2petU9sYIhWVMAA4+H7:R303UIApyYIhWVMEy

    Score
    10/10
    gluptebadropperevasionexecutionloaderupx

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

      loaderdropperglupteba

    • Glupteba payload

    • Modifies Windows Firewall

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks