glupteba | e98a00d76c5b7c8531ec6963c3fd3a60a682fa28c588389ae9c4064479f8aca2 | Triage

Submit
Reports

Overview

overview

Static

static

3

0ae0633ca6...18.exe

windows7-x64

0ae0633ca6...18.exe

windows10-2004-x64

Sharing

General

Target

0ae0633ca64e5cf205aef2d10a7aa6fa_JaffaCakes118
Size

5.0MB
Sample

241002-qpxl5ascka
MD5

0ae0633ca64e5cf205aef2d10a7aa6fa
SHA1

101654c4610e8c784811f36179cd6de9d00f01c8
SHA256

e98a00d76c5b7c8531ec6963c3fd3a60a682fa28c588389ae9c4064479f8aca2
SHA512

e19ea29d395ba3022806d395431afc42559e94e5135daa1e67ba790c19979fb97da8d4408bd3edec9932fd36d8387cfabdce22e0d6dd1396acc10be4a3fe7576
SSDEEP

98304:SeDb2l0wP3lTII0pPv77cFLbLZkJNjmz7AVzIT:Xf22wP31IfpX77WL5AsMzIT

Score

10^/10

glupteba discovery dropper evasion loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0ae0633ca64e5cf205aef2d10a7aa6fa_JaffaCakes118.exe

Resource

win7-20240903-en

glupteba dropper evasion loader

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0ae0633ca64e5cf205aef2d10a7aa6fa_JaffaCakes118.exe

Resource

win10v2004-20240802-en

glupteba discovery dropper evasion loader

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  0ae0633ca64e5cf205aef2d10a7aa6fa_JaffaCakes118
- Size
  
  5.0MB
- MD5
  
  0ae0633ca64e5cf205aef2d10a7aa6fa
- SHA1
  
  101654c4610e8c784811f36179cd6de9d00f01c8
- SHA256
  
  e98a00d76c5b7c8531ec6963c3fd3a60a682fa28c588389ae9c4064479f8aca2
- SHA512
  
  e19ea29d395ba3022806d395431afc42559e94e5135daa1e67ba790c19979fb97da8d4408bd3edec9932fd36d8387cfabdce22e0d6dd1396acc10be4a3fe7576
- SSDEEP
  
  98304:SeDb2l0wP3lTII0pPv77cFLbLZkJNjmz7AVzIT:Xf22wP31IfpX77WL5AsMzIT
Score

10^/10

glupteba dropper evasion loader discovery
- Glupteba
  Glupteba is a modular loader written in Golang with various components.
  loader dropper glupteba
- Glupteba payload
- Modifies Windows Firewall
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

gluptebadropperevasionloader

behavioral2

gluptebadiscoverydropperevasionloader

© 2018-2025

Terms | Privacy