General
-
Target
02b07ffe2a772f3fa26ce7be389d0f0fd18e5bffa88df52d5f7e4065a48761fe
-
Size
157KB
-
Sample
221030-zce1zsafgq
-
MD5
920cad68c4aa058632f6e474b604a96a
-
SHA1
1156737bcd1219f2b09e6dbbe4e46b76ec021a30
-
SHA256
02b07ffe2a772f3fa26ce7be389d0f0fd18e5bffa88df52d5f7e4065a48761fe
-
SHA512
5aae99fb9dfc9cac7deaf8f88fd9f76b4b3ecbbcfc9764e87ac594a1039136b0e38228271123267ea00a546d2cf5d74b5ab8b9cdad8b3c190f78ab51cb97b316
-
SSDEEP
3072:YBjuHWiMEmQVnDhq6N8ONjtW5yOL0I7AJNelmgWU4X:oWeEmqDDNFGTN7ASlnWU+
Malware Config
Targets
-
-
Target
02b07ffe2a772f3fa26ce7be389d0f0fd18e5bffa88df52d5f7e4065a48761fe
-
Size
157KB
-
MD5
920cad68c4aa058632f6e474b604a96a
-
SHA1
1156737bcd1219f2b09e6dbbe4e46b76ec021a30
-
SHA256
02b07ffe2a772f3fa26ce7be389d0f0fd18e5bffa88df52d5f7e4065a48761fe
-
SHA512
5aae99fb9dfc9cac7deaf8f88fd9f76b4b3ecbbcfc9764e87ac594a1039136b0e38228271123267ea00a546d2cf5d74b5ab8b9cdad8b3c190f78ab51cb97b316
-
SSDEEP
3072:YBjuHWiMEmQVnDhq6N8ONjtW5yOL0I7AJNelmgWU4X:oWeEmqDDNFGTN7ASlnWU+
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-