General
-
Target
65669974b4f2b6e77e4b60ded6e3bf6b2e72fc8ccee9c56614ef4029cc5bfff2
-
Size
1.7MB
-
Sample
221003-fpv37ahab7
-
MD5
6a7cb47539bcd51648e3e2efc23d99a1
-
SHA1
12de56ec7ee10aefdbc8738b315a7923c9b26e57
-
SHA256
65669974b4f2b6e77e4b60ded6e3bf6b2e72fc8ccee9c56614ef4029cc5bfff2
-
SHA512
5426036b45c2105a3e5c1707e86eb1c500604a36a6c2ed6e1eddacecb0aef71d35e5cc8a0c0485b2a8932920958659a6f7cfd950073bdfdafc9c8badf3cd43be
-
SSDEEP
24576:3uhaiEeZJ8NI8yEeZJ8NI8yEeZJ8NI8yEeZJAn:Y78y8y81
Behavioral task
behavioral1
Sample
65669974b4f2b6e77e4b60ded6e3bf6b2e72fc8ccee9c56614ef4029cc5bfff2.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
65669974b4f2b6e77e4b60ded6e3bf6b2e72fc8ccee9c56614ef4029cc5bfff2.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
65669974b4f2b6e77e4b60ded6e3bf6b2e72fc8ccee9c56614ef4029cc5bfff2
-
Size
1.7MB
-
MD5
6a7cb47539bcd51648e3e2efc23d99a1
-
SHA1
12de56ec7ee10aefdbc8738b315a7923c9b26e57
-
SHA256
65669974b4f2b6e77e4b60ded6e3bf6b2e72fc8ccee9c56614ef4029cc5bfff2
-
SHA512
5426036b45c2105a3e5c1707e86eb1c500604a36a6c2ed6e1eddacecb0aef71d35e5cc8a0c0485b2a8932920958659a6f7cfd950073bdfdafc9c8badf3cd43be
-
SSDEEP
24576:3uhaiEeZJ8NI8yEeZJ8NI8yEeZJ8NI8yEeZJAn:Y78y8y81
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Executes dropped EXE
-
Sets file execution options in registry
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-