General
-
Target
835e0c8689723540ae697cf6998f5505c11a30f3fdf63e9be9cf8b62cacc638e
-
Size
157KB
-
Sample
221107-zzvpysbhdj
-
MD5
0ee7655dedbda18e2dbd35494ebab750
-
SHA1
8503ee09ada2872f4fa8a631fe336494a1e90767
-
SHA256
835e0c8689723540ae697cf6998f5505c11a30f3fdf63e9be9cf8b62cacc638e
-
SHA512
957740ccb604b2783dc0fc0df998e13aaab0be6daef4e24f8f07cf6d50f35415a6bec1eb6ec038b91440c8ce1fedc78ed6ca028113396791253aef862c203600
-
SSDEEP
3072:iXWZffnl34DTjkw5dK09nsuCI3Tgt3UgVWzK7oknwo+Z:imll34DSwst32zfknb+Z
Malware Config
Targets
-
-
Target
835e0c8689723540ae697cf6998f5505c11a30f3fdf63e9be9cf8b62cacc638e
-
Size
157KB
-
MD5
0ee7655dedbda18e2dbd35494ebab750
-
SHA1
8503ee09ada2872f4fa8a631fe336494a1e90767
-
SHA256
835e0c8689723540ae697cf6998f5505c11a30f3fdf63e9be9cf8b62cacc638e
-
SHA512
957740ccb604b2783dc0fc0df998e13aaab0be6daef4e24f8f07cf6d50f35415a6bec1eb6ec038b91440c8ce1fedc78ed6ca028113396791253aef862c203600
-
SSDEEP
3072:iXWZffnl34DTjkw5dK09nsuCI3Tgt3UgVWzK7oknwo+Z:imll34DSwst32zfknb+Z
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-