glupteba | ac10e43cbfc02ecb3278104fd75c5ec8817100682a711318c473fd66287e23e1 | Triage

Submit
Reports

Overview

overview

Static

static

3

9b3acfbcc7...18.exe

windows7-x64

9b3acfbcc7...18.exe

windows10-2004-x64

Sharing

General

Target

9b3acfbcc7329bb4076590bcf06405ea_JaffaCakes118
Size

5.0MB
Sample

240610-td4g3sscqc
MD5

9b3acfbcc7329bb4076590bcf06405ea
SHA1

080381c640febaac9b4fa902f6c890efe4d27f15
SHA256

ac10e43cbfc02ecb3278104fd75c5ec8817100682a711318c473fd66287e23e1
SHA512

7d0378f6203a70c5215bbc8a7d334256224a026ad1a32b796f866d08efb9c5e9df0ac3039bcbe18e53c07280e62a108a7188c511c4377a241ef2efd071f0a2f9
SSDEEP

98304:OOmWCUAtacMcP75xJIaZKcrVjYjJ5xxg57Vx9YvXR6PNjTAz8HASWOK1:O3WWDMcP75xJIVJi7Vxu0PNQz8gfb

Score

10^/10

glupteba dropper evasion loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9b3acfbcc7329bb4076590bcf06405ea_JaffaCakes118.exe

Resource

win7-20240419-en

glupteba dropper evasion loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

9b3acfbcc7329bb4076590bcf06405ea_JaffaCakes118.exe

Resource

win10v2004-20240508-en

glupteba dropper evasion loader

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  9b3acfbcc7329bb4076590bcf06405ea_JaffaCakes118
- Size
  
  5.0MB
- MD5
  
  9b3acfbcc7329bb4076590bcf06405ea
- SHA1
  
  080381c640febaac9b4fa902f6c890efe4d27f15
- SHA256
  
  ac10e43cbfc02ecb3278104fd75c5ec8817100682a711318c473fd66287e23e1
- SHA512
  
  7d0378f6203a70c5215bbc8a7d334256224a026ad1a32b796f866d08efb9c5e9df0ac3039bcbe18e53c07280e62a108a7188c511c4377a241ef2efd071f0a2f9
- SSDEEP
  
  98304:OOmWCUAtacMcP75xJIaZKcrVjYjJ5xxg57Vx9YvXR6PNjTAz8HASWOK1:O3WWDMcP75xJIVJi7Vxu0PNQz8gfb
Score

10^/10

glupteba dropper evasion loader
- Glupteba
  Glupteba is a modular loader written in Golang with various components.
  loader dropper glupteba
- Glupteba payload
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gluptebadropperevasionloader

behavioral2

gluptebadropperevasionloader

© 2018-2024

Terms | Privacy