General
-
Target
26e25fba6fd230ae63a29fb859a8c8b310f2c8de9d29214ad85f50bcdc776b00
-
Size
469KB
-
Sample
221002-babzjsfgem
-
MD5
475062f8bb118692dfb30022d001aa0b
-
SHA1
b43d545fa85e5d94e1ff6eb0a6648c7821435fcd
-
SHA256
26e25fba6fd230ae63a29fb859a8c8b310f2c8de9d29214ad85f50bcdc776b00
-
SHA512
79a4be7008d0290158417653b17b13d0f861c875a2efe9e841666f800bfef6f5d41ec718c076270503c0dac996aa11338fc25b16fca64049a92221a94e7abe74
-
SSDEEP
12288:T20VlhganzrWSG6zxWC5kcDestmxoAKOzCZaHP4+2nf1Z+JxRU:flzrRWWDeBx7KOzCZavCqxRU
Malware Config
Targets
-
-
Target
26e25fba6fd230ae63a29fb859a8c8b310f2c8de9d29214ad85f50bcdc776b00
-
Size
469KB
-
MD5
475062f8bb118692dfb30022d001aa0b
-
SHA1
b43d545fa85e5d94e1ff6eb0a6648c7821435fcd
-
SHA256
26e25fba6fd230ae63a29fb859a8c8b310f2c8de9d29214ad85f50bcdc776b00
-
SHA512
79a4be7008d0290158417653b17b13d0f861c875a2efe9e841666f800bfef6f5d41ec718c076270503c0dac996aa11338fc25b16fca64049a92221a94e7abe74
-
SSDEEP
12288:T20VlhganzrWSG6zxWC5kcDestmxoAKOzCZaHP4+2nf1Z+JxRU:flzrRWWDeBx7KOzCZavCqxRU
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-