General
-
Target
456dbb164bb121a02b0a5a305e5105784913448907e31bb0fb47b9709468e301
-
Size
151KB
-
Sample
221123-vsbw2scg5x
-
MD5
5c313a5c80b930dc9171378cf47b60e0
-
SHA1
224c510efd2c7f32e2de1045c802b9ed492ffbd6
-
SHA256
456dbb164bb121a02b0a5a305e5105784913448907e31bb0fb47b9709468e301
-
SHA512
0e24beaa1c6de75d9432453167b23f8362e35ddae0a218f0b4f95cc2b2c9b7b73c24cac6623fded157d47b7b73562fb3960a0fe57918cdd5609c8179d4739c84
-
SSDEEP
3072:gSC3nTjvrOtSqwr+7FqvjCKIHRQ1R2bcO6fyor:gd3nnyti+7FqvjCdHRQ1k65r
Malware Config
Targets
-
-
Target
456dbb164bb121a02b0a5a305e5105784913448907e31bb0fb47b9709468e301
-
Size
151KB
-
MD5
5c313a5c80b930dc9171378cf47b60e0
-
SHA1
224c510efd2c7f32e2de1045c802b9ed492ffbd6
-
SHA256
456dbb164bb121a02b0a5a305e5105784913448907e31bb0fb47b9709468e301
-
SHA512
0e24beaa1c6de75d9432453167b23f8362e35ddae0a218f0b4f95cc2b2c9b7b73c24cac6623fded157d47b7b73562fb3960a0fe57918cdd5609c8179d4739c84
-
SSDEEP
3072:gSC3nTjvrOtSqwr+7FqvjCKIHRQ1R2bcO6fyor:gd3nnyti+7FqvjCdHRQ1k65r
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-