General

  • Target

    2296e560d7406d3172f1f4507378a40339747a581aae2d44fb4be4230f835a87

  • Size

    4.1MB

  • Sample

    240519-cbhn6acd7s

  • MD5

    83914fd3d4f9293a5c787200efeacd07

  • SHA1

    af8b198fbe498b090d821060a25db0d14b29264d

  • SHA256

    2296e560d7406d3172f1f4507378a40339747a581aae2d44fb4be4230f835a87

  • SHA512

    0959187faf2e458aae20b6aff41c67cba2eb84843dd745ff941969175baa873f87d982f6cffa917f5a4e9b72211b702c9fe020bda1edae39f59dc12ac4f69e97

  • SSDEEP

    98304:ErbgSYZm0VZ47d2LjXdY+WeqK35WW/TEhU3Gu22l:ErcnZFqd2LRPP3hYhQZl

Malware Config

Targets

    • Target

      2296e560d7406d3172f1f4507378a40339747a581aae2d44fb4be4230f835a87

    • Size

      4.1MB

    • MD5

      83914fd3d4f9293a5c787200efeacd07

    • SHA1

      af8b198fbe498b090d821060a25db0d14b29264d

    • SHA256

      2296e560d7406d3172f1f4507378a40339747a581aae2d44fb4be4230f835a87

    • SHA512

      0959187faf2e458aae20b6aff41c67cba2eb84843dd745ff941969175baa873f87d982f6cffa917f5a4e9b72211b702c9fe020bda1edae39f59dc12ac4f69e97

    • SSDEEP

      98304:ErbgSYZm0VZ47d2LjXdY+WeqK35WW/TEhU3Gu22l:ErcnZFqd2LRPP3hYhQZl

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

    • Glupteba payload

    • Modifies Windows Firewall

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks