General
-
Target
79157472fa03a4107e63251b2ec01ba5320822efc93e0c1a1f7077b1a78a5dbb
-
Size
151KB
-
Sample
221124-aww16sag21
-
MD5
3cec22445fd2a2a2ac4e3345fbd441b0
-
SHA1
f0512b11f2ae061742f6ebbc8ebb6039887afba4
-
SHA256
79157472fa03a4107e63251b2ec01ba5320822efc93e0c1a1f7077b1a78a5dbb
-
SHA512
6f806cfc03afd6e433697ee0b44b0621bd263f9fba9bb479754efc94158c973727a9b4bcef4d9ed19b2eef011ce44fad0d8edf470be0067672312bff05371b71
-
SSDEEP
3072:HSSknv7BYJlQXQ8p6g4bV/PkKjzPB+P/MOKYuN2J2J9VVpcx+zs:yhCJCpp6gEkKfcP/MOKZbp1zs
Static task
static1
Behavioral task
behavioral1
Sample
79157472fa03a4107e63251b2ec01ba5320822efc93e0c1a1f7077b1a78a5dbb.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
79157472fa03a4107e63251b2ec01ba5320822efc93e0c1a1f7077b1a78a5dbb.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
79157472fa03a4107e63251b2ec01ba5320822efc93e0c1a1f7077b1a78a5dbb
-
Size
151KB
-
MD5
3cec22445fd2a2a2ac4e3345fbd441b0
-
SHA1
f0512b11f2ae061742f6ebbc8ebb6039887afba4
-
SHA256
79157472fa03a4107e63251b2ec01ba5320822efc93e0c1a1f7077b1a78a5dbb
-
SHA512
6f806cfc03afd6e433697ee0b44b0621bd263f9fba9bb479754efc94158c973727a9b4bcef4d9ed19b2eef011ce44fad0d8edf470be0067672312bff05371b71
-
SSDEEP
3072:HSSknv7BYJlQXQ8p6g4bV/PkKjzPB+P/MOKYuN2J2J9VVpcx+zs:yhCJCpp6gEkKfcP/MOKZbp1zs
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-