General
-
Target
d509789adc64bbfcae6670f96f9ae9326b28d664b46d599813568153472689fb
-
Size
107KB
-
Sample
221028-w6bzmsaghr
-
MD5
0b25311c6757b0b3a2e100f69eb2a940
-
SHA1
c339f5a81f46f610f6d8c85791a00fee8fac80f4
-
SHA256
d509789adc64bbfcae6670f96f9ae9326b28d664b46d599813568153472689fb
-
SHA512
0ba66b7c41440da2725b5163f27f3459401913a16617fe08ac8683596ac8a0826200a64f3ffb3964239e5608206cb4c087e4f95c03a4bceb130d6391e5fe456b
-
SSDEEP
1536:gXrikuLy9AY8MOpZotmgLHR8LCL/Mv6XxXSH3/BRppYLWm5tUrv1coff8:rku2qY8rXfI+LZv6XxXcZpYlgrdcQ8
Malware Config
Targets
-
-
Target
d509789adc64bbfcae6670f96f9ae9326b28d664b46d599813568153472689fb
-
Size
107KB
-
MD5
0b25311c6757b0b3a2e100f69eb2a940
-
SHA1
c339f5a81f46f610f6d8c85791a00fee8fac80f4
-
SHA256
d509789adc64bbfcae6670f96f9ae9326b28d664b46d599813568153472689fb
-
SHA512
0ba66b7c41440da2725b5163f27f3459401913a16617fe08ac8683596ac8a0826200a64f3ffb3964239e5608206cb4c087e4f95c03a4bceb130d6391e5fe456b
-
SSDEEP
1536:gXrikuLy9AY8MOpZotmgLHR8LCL/Mv6XxXSH3/BRppYLWm5tUrv1coff8:rku2qY8rXfI+LZv6XxXcZpYlgrdcQ8
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-