General
-
Target
5a656afda18ab0ab024c417bf18d6d51b586379b118e9e7c1f813218e73606fa
-
Size
3.5MB
-
Sample
221003-fpyt3sadar
-
MD5
6201ecdf3937d30d0794aeabac073eb6
-
SHA1
d9e5db68c46d8fc30ec72cfe8140a2612f7e0614
-
SHA256
5a656afda18ab0ab024c417bf18d6d51b586379b118e9e7c1f813218e73606fa
-
SHA512
04de78afa459e6667726d9a65bcb5f5ab0cc437ef219e5427d1404d4d66bb8cf5cb2baf1aaf300a9852ba647a56dead62b0904f4ed68a89f6e537acd937dd60b
-
SSDEEP
24576:0OA2eZJ8NI8NahxAO0pObs2M+1OVOQ8OA2eZJ8NI8NahxAO0pObs2M+1OVOQWeZq:08NKeOIwsaOQL8NKeOIwsaOQ1D
Malware Config
Targets
-
-
Target
5a656afda18ab0ab024c417bf18d6d51b586379b118e9e7c1f813218e73606fa
-
Size
3.5MB
-
MD5
6201ecdf3937d30d0794aeabac073eb6
-
SHA1
d9e5db68c46d8fc30ec72cfe8140a2612f7e0614
-
SHA256
5a656afda18ab0ab024c417bf18d6d51b586379b118e9e7c1f813218e73606fa
-
SHA512
04de78afa459e6667726d9a65bcb5f5ab0cc437ef219e5427d1404d4d66bb8cf5cb2baf1aaf300a9852ba647a56dead62b0904f4ed68a89f6e537acd937dd60b
-
SSDEEP
24576:0OA2eZJ8NI8NahxAO0pObs2M+1OVOQ8OA2eZJ8NI8NahxAO0pObs2M+1OVOQWeZq:08NKeOIwsaOQL8NKeOIwsaOQ1D
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Executes dropped EXE
-
Sets file execution options in registry
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-