General
-
Target
c80f6e093be51dd70ed0ef418540c2ae211178123e6d8c3529756c94c05167f8
-
Size
490KB
-
Sample
221124-awlkfaaf9v
-
MD5
3c5e40ea5025da23aa8d12f0bd8c9600
-
SHA1
8dc9e1089ed07494a625fc07c89c5863a26381a0
-
SHA256
c80f6e093be51dd70ed0ef418540c2ae211178123e6d8c3529756c94c05167f8
-
SHA512
bb7e017bbf6a859561affd48d5e80dbe147e8be757c4f443eba04e3b0e896a5c57ed01595d97ab147f8ed92c3a37b6a98292f27bb03b7eb6098069b860b9a61a
-
SSDEEP
3072:dGGgEOxL86PcvgKOEtgU/W9x8GZGfH9E5BsNCLT3i/H0mid7Stf7ntl35/LPoAmE:AeOxLfPcvgKV5s5EH9H5/LXm9ZEj
Malware Config
Targets
-
-
Target
c80f6e093be51dd70ed0ef418540c2ae211178123e6d8c3529756c94c05167f8
-
Size
490KB
-
MD5
3c5e40ea5025da23aa8d12f0bd8c9600
-
SHA1
8dc9e1089ed07494a625fc07c89c5863a26381a0
-
SHA256
c80f6e093be51dd70ed0ef418540c2ae211178123e6d8c3529756c94c05167f8
-
SHA512
bb7e017bbf6a859561affd48d5e80dbe147e8be757c4f443eba04e3b0e896a5c57ed01595d97ab147f8ed92c3a37b6a98292f27bb03b7eb6098069b860b9a61a
-
SSDEEP
3072:dGGgEOxL86PcvgKOEtgU/W9x8GZGfH9E5BsNCLT3i/H0mid7Stf7ntl35/LPoAmE:AeOxLfPcvgKV5s5EH9H5/LXm9ZEj
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-