General

  • Target

    a8629db6f5524d25a30a20cde55a2b5cde48498cb85c752877d7a28f7c7d811e

  • Size

    4.1MB

  • Sample

    240519-cbl2kscf26

  • MD5

    b8a851c16e58686ebdd376817007dfb7

  • SHA1

    bda96c71e3c77465090266e011a9d17add1ed258

  • SHA256

    a8629db6f5524d25a30a20cde55a2b5cde48498cb85c752877d7a28f7c7d811e

  • SHA512

    057e0f474d29a868f231ad906b70e6a95262b3facb5b486bf33845b78014e337feedfcb6b1505be25fc079ae55bf8f0875f35b7f051b1fb1d0b792ef14ca5a4f

  • SSDEEP

    98304:UrbgSYZm0VZ47d2LjXdY+WeqK35WW/TEhU3Gu22X:UrcnZFqd2LRPP3hYhQZX

Malware Config

Targets

    • Target

      a8629db6f5524d25a30a20cde55a2b5cde48498cb85c752877d7a28f7c7d811e

    • Size

      4.1MB

    • MD5

      b8a851c16e58686ebdd376817007dfb7

    • SHA1

      bda96c71e3c77465090266e011a9d17add1ed258

    • SHA256

      a8629db6f5524d25a30a20cde55a2b5cde48498cb85c752877d7a28f7c7d811e

    • SHA512

      057e0f474d29a868f231ad906b70e6a95262b3facb5b486bf33845b78014e337feedfcb6b1505be25fc079ae55bf8f0875f35b7f051b1fb1d0b792ef14ca5a4f

    • SSDEEP

      98304:UrbgSYZm0VZ47d2LjXdY+WeqK35WW/TEhU3Gu22X:UrcnZFqd2LRPP3hYhQZX

    • Glupteba

      Glupteba is a modular loader written in Golang with various components.

    • Glupteba payload

    • Modifies Windows Firewall

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks