General
-
Target
71c0282e793421dfb977c476965237bc52926306628e3d1016ae6ffcf4c25c44
-
Size
309KB
-
Sample
221124-fxyjaabd55
-
MD5
194715525813359d36f8a7507ec6d860
-
SHA1
307e35027800c55266e545d043a5ddf49684b5ae
-
SHA256
71c0282e793421dfb977c476965237bc52926306628e3d1016ae6ffcf4c25c44
-
SHA512
d00a802cda2c46474fa3cf429ff7b7ed363d80bc5bee3b5476185b74d2b29f3b52342bf344fc2fdae5a3cd0405cb3c2cffa65381d54c077111b0bbd7082eb389
-
SSDEEP
6144:5uHO6rG1VVE+Iel+lXDZJfLufs73dOk0XDpNjNOpys8trG1VVE+IA:gOuureZJys73dOvXDpNjNe8Rut
Malware Config
Targets
-
-
Target
71c0282e793421dfb977c476965237bc52926306628e3d1016ae6ffcf4c25c44
-
Size
309KB
-
MD5
194715525813359d36f8a7507ec6d860
-
SHA1
307e35027800c55266e545d043a5ddf49684b5ae
-
SHA256
71c0282e793421dfb977c476965237bc52926306628e3d1016ae6ffcf4c25c44
-
SHA512
d00a802cda2c46474fa3cf429ff7b7ed363d80bc5bee3b5476185b74d2b29f3b52342bf344fc2fdae5a3cd0405cb3c2cffa65381d54c077111b0bbd7082eb389
-
SSDEEP
6144:5uHO6rG1VVE+Iel+lXDZJfLufs73dOk0XDpNjNOpys8trG1VVE+IA:gOuureZJys73dOvXDpNjNe8Rut
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Executes dropped EXE
-
Sets file execution options in registry
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-