General
-
Target
e0326e573243606cdb616668528a8759fdc877d516c8febe4151e7df718350f6
-
Size
469KB
-
Sample
221011-2r18wahhd9
-
MD5
77b5e4ccb56ec9a6f19a9fc92d66b724
-
SHA1
32f2f54a83da7ab3d85b1a93e98d84f6b710535d
-
SHA256
e0326e573243606cdb616668528a8759fdc877d516c8febe4151e7df718350f6
-
SHA512
84ecd86b85d23d6e64a1e26a687143d90f3b5499366eb73c4bca4cce20fab0e147b70002073f3d4cf7c353321b57e1d7bdc5a1ef160f555e89cae4d669b02a6c
-
SSDEEP
6144:5uHOQnmy+g46nmy+g4hl+lXDZJfLufs73dOk0XDpNjNOpys8mnmy+g4ByJuHeL2H:gOQVYeZJys73dOvXDpNjNe8m0oGeLZZe
Malware Config
Targets
-
-
Target
e0326e573243606cdb616668528a8759fdc877d516c8febe4151e7df718350f6
-
Size
469KB
-
MD5
77b5e4ccb56ec9a6f19a9fc92d66b724
-
SHA1
32f2f54a83da7ab3d85b1a93e98d84f6b710535d
-
SHA256
e0326e573243606cdb616668528a8759fdc877d516c8febe4151e7df718350f6
-
SHA512
84ecd86b85d23d6e64a1e26a687143d90f3b5499366eb73c4bca4cce20fab0e147b70002073f3d4cf7c353321b57e1d7bdc5a1ef160f555e89cae4d669b02a6c
-
SSDEEP
6144:5uHOQnmy+g46nmy+g4hl+lXDZJfLufs73dOk0XDpNjNOpys8mnmy+g4ByJuHeL2H:gOQVYeZJys73dOvXDpNjNe8m0oGeLZZe
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Executes dropped EXE
-
Sets file execution options in registry
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-