General
-
Target
230d30bbe577e7e63c0c1387dc12d8524463a1eda251a3f938636aed03e0e7c3
-
Size
151KB
-
Sample
221124-axcnxsfe56
-
MD5
1cf6e15882c29b293184b5c98bd3f31c
-
SHA1
16d61d2cf1cc4954df07c7cfef2a116aae5cd740
-
SHA256
230d30bbe577e7e63c0c1387dc12d8524463a1eda251a3f938636aed03e0e7c3
-
SHA512
30babaf7fbd49fe95d95bcaa1d91499dda6fcc11a3d0bc3ad36e475a50b4ecc9866fc07fdcfca73eb088bc10615784ace8ba6c1041526034f9e9ddf7844c5d2e
-
SSDEEP
3072:yl9EbHbfSskFvZNtvEm1deGcn0sihTLa+VDgySSWN0nB:ylsvkd/FEecn0sih1dVnB
Malware Config
Targets
-
-
Target
230d30bbe577e7e63c0c1387dc12d8524463a1eda251a3f938636aed03e0e7c3
-
Size
151KB
-
MD5
1cf6e15882c29b293184b5c98bd3f31c
-
SHA1
16d61d2cf1cc4954df07c7cfef2a116aae5cd740
-
SHA256
230d30bbe577e7e63c0c1387dc12d8524463a1eda251a3f938636aed03e0e7c3
-
SHA512
30babaf7fbd49fe95d95bcaa1d91499dda6fcc11a3d0bc3ad36e475a50b4ecc9866fc07fdcfca73eb088bc10615784ace8ba6c1041526034f9e9ddf7844c5d2e
-
SSDEEP
3072:yl9EbHbfSskFvZNtvEm1deGcn0sihTLa+VDgySSWN0nB:ylsvkd/FEecn0sih1dVnB
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-