General
-
Target
ab73888d1440fed995032ff475e05bf5814fb9855a104630161a5f915d1d6b12
-
Size
152KB
-
Sample
221106-s6etrahfg7
-
MD5
05009ccadc0dba9c9561b4e0a9270211
-
SHA1
d445bc150a478f0fbd70c1f98e6bd4f7dc27dd1a
-
SHA256
ab73888d1440fed995032ff475e05bf5814fb9855a104630161a5f915d1d6b12
-
SHA512
d57e500790a26562eb02f06258427267bb06d4f73b7ea0905b0a681e1a2d9489083643f836b454c72aa0b0bf00476be1e24665e2cf902d97d5e6462d5f52287f
-
SSDEEP
3072:4C3ihpU0EXqyWOSr2ROWKdSJDLVAXhRRHy:QDEXW/2ROdMHVAxRRHy
Malware Config
Targets
-
-
Target
ab73888d1440fed995032ff475e05bf5814fb9855a104630161a5f915d1d6b12
-
Size
152KB
-
MD5
05009ccadc0dba9c9561b4e0a9270211
-
SHA1
d445bc150a478f0fbd70c1f98e6bd4f7dc27dd1a
-
SHA256
ab73888d1440fed995032ff475e05bf5814fb9855a104630161a5f915d1d6b12
-
SHA512
d57e500790a26562eb02f06258427267bb06d4f73b7ea0905b0a681e1a2d9489083643f836b454c72aa0b0bf00476be1e24665e2cf902d97d5e6462d5f52287f
-
SSDEEP
3072:4C3ihpU0EXqyWOSr2ROWKdSJDLVAXhRRHy:QDEXW/2ROdMHVAxRRHy
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-