General
-
Target
aef8de8f81f13e9c93217e2081969355c0ded282affe08a417f1f7fb9808a712
-
Size
367KB
-
Sample
221123-z3lapaed45
-
MD5
9ce599146b5e74ae435abb4f080fbd96
-
SHA1
216afa48b8ecaa5b802cfb60395e76fbff8ff456
-
SHA256
aef8de8f81f13e9c93217e2081969355c0ded282affe08a417f1f7fb9808a712
-
SHA512
64a102dfc7f55fe2668b4c0d897ee8f481ac4988836e86865d0437d3ffe3fa5e26b86f661df00b19aab72a9f49f9ed037a6205f35570508f769a5ca3fd0466f0
-
SSDEEP
6144:xCTPgrnq0/FniJi6uTJKvePPMqLckUet72FwBI+AFdb8MupVQO8uZUE4MI:xCTPgrnZiJiAaMVkUet7EwBI+APu4UjW
Malware Config
Targets
-
-
Target
aef8de8f81f13e9c93217e2081969355c0ded282affe08a417f1f7fb9808a712
-
Size
367KB
-
MD5
9ce599146b5e74ae435abb4f080fbd96
-
SHA1
216afa48b8ecaa5b802cfb60395e76fbff8ff456
-
SHA256
aef8de8f81f13e9c93217e2081969355c0ded282affe08a417f1f7fb9808a712
-
SHA512
64a102dfc7f55fe2668b4c0d897ee8f481ac4988836e86865d0437d3ffe3fa5e26b86f661df00b19aab72a9f49f9ed037a6205f35570508f769a5ca3fd0466f0
-
SSDEEP
6144:xCTPgrnq0/FniJi6uTJKvePPMqLckUet72FwBI+AFdb8MupVQO8uZUE4MI:xCTPgrnZiJiAaMVkUet7EwBI+APu4UjW
Score10/10-
Modifies system executable filetype association
-
Modifies visibility of file extensions in Explorer
-
Disables use of System Restore points
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-