General
-
Target
d61f283d8c3097f4eeed3eac0b94b84d551c7539a75f5f53cd18dd7847974f14
-
Size
164KB
-
Sample
221011-zvhjtseda3
-
MD5
5467af014900c650fb12c3f93d00350b
-
SHA1
bfd77d10945ed1f76b1943f2bf1408045a869438
-
SHA256
d61f283d8c3097f4eeed3eac0b94b84d551c7539a75f5f53cd18dd7847974f14
-
SHA512
bb1c356aed001fcc3decc72f8a32928aa3812dd6f6e616874d9a9e9ac49bce7f134affd4cbcf3d11cad9d54cb83cfccc83a90f759e7f0a5482771bce8578cc32
-
SSDEEP
3072:Nq60E/DS+/Y9wVMNtydw5D+GgE6BEfupLj9ks:hn/YWVMNtC0D+Q6qfoj9Z
Malware Config
Targets
-
-
Target
d61f283d8c3097f4eeed3eac0b94b84d551c7539a75f5f53cd18dd7847974f14
-
Size
164KB
-
MD5
5467af014900c650fb12c3f93d00350b
-
SHA1
bfd77d10945ed1f76b1943f2bf1408045a869438
-
SHA256
d61f283d8c3097f4eeed3eac0b94b84d551c7539a75f5f53cd18dd7847974f14
-
SHA512
bb1c356aed001fcc3decc72f8a32928aa3812dd6f6e616874d9a9e9ac49bce7f134affd4cbcf3d11cad9d54cb83cfccc83a90f759e7f0a5482771bce8578cc32
-
SSDEEP
3072:Nq60E/DS+/Y9wVMNtydw5D+GgE6BEfupLj9ks:hn/YWVMNtC0D+Q6qfoj9Z
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-