General
-
Target
04490921aef617a0a1f6b23d2f38f7052aa82e7559843efaa34bb5b0c31c4fb3
-
Size
151KB
-
Sample
221124-axgb4sag51
-
MD5
3cf9adb3432a8fc6aedf5a8094ea7cb1
-
SHA1
aa3da2650153ec4c196bf23555eac69fda88238a
-
SHA256
04490921aef617a0a1f6b23d2f38f7052aa82e7559843efaa34bb5b0c31c4fb3
-
SHA512
b777a1ed6b811c82b16733252c4f5caf3a5fb8a5ff4cf6542629442f348ca147ea4e59431d2134bf7ca367f574a1e104b7053e8dfe334c21cee4dede8a043d5c
-
SSDEEP
1536:XTXapoSEZsQKcQinAxq2dS+SPMdp7bmXwZQsn4GiRtII+DeitflxM/mKT9NIx5SS:MHgsJcNnAwgSDIMH+ZtflxM/SxAzgl
Static task
static1
Behavioral task
behavioral1
Sample
04490921aef617a0a1f6b23d2f38f7052aa82e7559843efaa34bb5b0c31c4fb3.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
04490921aef617a0a1f6b23d2f38f7052aa82e7559843efaa34bb5b0c31c4fb3.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
04490921aef617a0a1f6b23d2f38f7052aa82e7559843efaa34bb5b0c31c4fb3
-
Size
151KB
-
MD5
3cf9adb3432a8fc6aedf5a8094ea7cb1
-
SHA1
aa3da2650153ec4c196bf23555eac69fda88238a
-
SHA256
04490921aef617a0a1f6b23d2f38f7052aa82e7559843efaa34bb5b0c31c4fb3
-
SHA512
b777a1ed6b811c82b16733252c4f5caf3a5fb8a5ff4cf6542629442f348ca147ea4e59431d2134bf7ca367f574a1e104b7053e8dfe334c21cee4dede8a043d5c
-
SSDEEP
1536:XTXapoSEZsQKcQinAxq2dS+SPMdp7bmXwZQsn4GiRtII+DeitflxM/mKT9NIx5SS:MHgsJcNnAwgSDIMH+ZtflxM/SxAzgl
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-