General
-
Target
52df430076ab781d060789d28ea820ea47a4c9a9725265362165697b0f1eb454
-
Size
362KB
-
Sample
221124-aw3tqafe39
-
MD5
159a9383041c2c43b07e7b344eab4ec0
-
SHA1
1e1f27964aaaa9bb871749f5caa6742f0a491a47
-
SHA256
52df430076ab781d060789d28ea820ea47a4c9a9725265362165697b0f1eb454
-
SHA512
ae97d4f01f270819d21b0a93db95631ed7f948410b98bb6590003765052e456d3265a6f7b5cc2fda76a1efc7f7e5f171ade84663a8d48dc06c3ce4d29999b971
-
SSDEEP
6144:LDL7lKbtlMg/yzNGJTkwMgOmxCfBRuWJvE8n5Ywt:DglMgkwJIfBRuWW8Kwt
Malware Config
Targets
-
-
Target
52df430076ab781d060789d28ea820ea47a4c9a9725265362165697b0f1eb454
-
Size
362KB
-
MD5
159a9383041c2c43b07e7b344eab4ec0
-
SHA1
1e1f27964aaaa9bb871749f5caa6742f0a491a47
-
SHA256
52df430076ab781d060789d28ea820ea47a4c9a9725265362165697b0f1eb454
-
SHA512
ae97d4f01f270819d21b0a93db95631ed7f948410b98bb6590003765052e456d3265a6f7b5cc2fda76a1efc7f7e5f171ade84663a8d48dc06c3ce4d29999b971
-
SSDEEP
6144:LDL7lKbtlMg/yzNGJTkwMgOmxCfBRuWJvE8n5Ywt:DglMgkwJIfBRuWW8Kwt
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-