General
-
Target
a12db0db7bb99f0b8aab406588d21cee4b8153e21c5963f07994c5a433d3bead
-
Size
234KB
-
Sample
221002-a9gteaeeb3
-
MD5
47f326f9250eb5a236f4bbb5e785598c
-
SHA1
c13a93e24159d1f071717636e25adbbe9625d2db
-
SHA256
a12db0db7bb99f0b8aab406588d21cee4b8153e21c5963f07994c5a433d3bead
-
SHA512
b6579e0f9e47f81cb16775af3a6e63d2c022796bc3ecf9ee27222d1128b72e55748f48436ee5c99efead8ff89602ccda8d49baf641e2ca680948123cfe6f2ff6
-
SSDEEP
3072:HLk39hhYXJOqlWY8umcPkaJfIsdFfTx3TgNSqr6n16L92ojxnv3LJuZQHZrHW:HQ67lWCmgprtNqr0ojxvdSsZjW
Malware Config
Targets
-
-
Target
a12db0db7bb99f0b8aab406588d21cee4b8153e21c5963f07994c5a433d3bead
-
Size
234KB
-
MD5
47f326f9250eb5a236f4bbb5e785598c
-
SHA1
c13a93e24159d1f071717636e25adbbe9625d2db
-
SHA256
a12db0db7bb99f0b8aab406588d21cee4b8153e21c5963f07994c5a433d3bead
-
SHA512
b6579e0f9e47f81cb16775af3a6e63d2c022796bc3ecf9ee27222d1128b72e55748f48436ee5c99efead8ff89602ccda8d49baf641e2ca680948123cfe6f2ff6
-
SSDEEP
3072:HLk39hhYXJOqlWY8umcPkaJfIsdFfTx3TgNSqr6n16L92ojxnv3LJuZQHZrHW:HQ67lWCmgprtNqr0ojxvdSsZjW
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-