General
-
Target
d918efba2b4f020337bc331cfa9d9dd36e8bf355632853a47b2734d0611ab0fd
-
Size
1.5MB
-
Sample
221123-1dyedsaa9z
-
MD5
cb9195b66cc37bc361cf8db62786a5c9
-
SHA1
dc8d0da790b92db3cee87af989c8fb4ec0e7c733
-
SHA256
d918efba2b4f020337bc331cfa9d9dd36e8bf355632853a47b2734d0611ab0fd
-
SHA512
bb70baa856d32add7b64b7c87c97a900cd672e5d8b6f094c585bdd93e5aa54f8c032b7bc2e8d059387374511e4fb63939c473072e5acb52273e53e6d2e879b16
-
SSDEEP
24576:l+erQZb+md4wm1j+erQZb+md4wm1werQZb+md4wmm:QerQZbd25SerQZbd25werQZbd2C
Malware Config
Targets
-
-
Target
d918efba2b4f020337bc331cfa9d9dd36e8bf355632853a47b2734d0611ab0fd
-
Size
1.5MB
-
MD5
cb9195b66cc37bc361cf8db62786a5c9
-
SHA1
dc8d0da790b92db3cee87af989c8fb4ec0e7c733
-
SHA256
d918efba2b4f020337bc331cfa9d9dd36e8bf355632853a47b2734d0611ab0fd
-
SHA512
bb70baa856d32add7b64b7c87c97a900cd672e5d8b6f094c585bdd93e5aa54f8c032b7bc2e8d059387374511e4fb63939c473072e5acb52273e53e6d2e879b16
-
SSDEEP
24576:l+erQZb+md4wm1j+erQZb+md4wm1werQZb+md4wmm:QerQZbd25SerQZbd25werQZbd2C
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Executes dropped EXE
-
Sets file execution options in registry
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-