← Back to Pulse Feed
PULSE DETAIL
This morning, SophosLabs is publishing a report on a malware family whose infection numbers have been steadily growing since the beginning of the year. This malware, with its hard-to-pronounce name, has been getting regular updates and feature enhancements that seem to be focused on its ability to conceal itself from detection on infected computers.
In our report, we’ve taken a deep dive into what makes the Glupteba malware distinctive. The core malware is, in essence, a dropper with extensive backdoor functionality, but it is a dropper that goes to great efforts to keep itself, and its various components, hidden from view by the human operator of an infected computer, or the security software charged with its protection.
MITRE ATT&CK & Malware Families
Indicators of Compromise (7 / 58 total)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-SHA1 | 6486a7db83b1be2ed5ef7239262d22508d3e075a | SHA1 of 407c70f0c1a1e34503dae74dd973cf037d607e3c4deb8f063d33f2142f1baf71 | 2020-06-24 | |
| FileHash-SHA1 | 687e062f904c32366aeed7c1dd1c42539470a027 | SHA1 of 6b0d90a0571ec870fa26372a1c5d83d06e8febca130a8f710e0c389a3054e05c | 2020-06-24 | |
| FileHash-SHA1 | 23f4059d15d91e19dc524dd966a8324f7e5ad525 | SHA1 of eb35bb221de38f5953f923cd349b4c85a50145329152a8aaa01e4cd8602a560e | 2020-06-24 | |
| FileHash-SHA1 | 1f3f38ef239e745726609ff1a73fab9547bb7925 | SHA1 of 04d71e8af8b5cbec912b82b6ebef7c19c5b888873dfd4609b1e38b2a6c398b2e | 2020-06-24 | |
| FileHash-SHA1 | bf018fcd38e0bea69735b9f07b09a75f8cf45b4a | SHA1 of dec11036bca8384f81c0c1d534e1f37fd2864c974dad020f32b835af3c7c4e28 | 2020-06-24 | |
| FileHash-SHA1 | ef5d785570e2dbd6d4a22a41e6a93b300fd9f73e | SHA1 of 20e983e90144c385996eeb2edb584d654d898c34725e149682170f870ee12870 | 2020-06-24 | |
| FileHash-SHA1 | 40b8a75b073794537248da8e86d354dbd35c6bb3 | SHA1 of 8d19c59db26a3e0a3251c5f05e143558bf009ed0b46fb9b6151f98441407ae8b | 2020-06-24 |