General
-
Target
7740eff727b10a127e3b54a572020a63a5432c6b98e9ec8b4890a5824f055434
-
Size
978KB
-
Sample
221127-t9b3pscd95
-
MD5
853005c76edbabdbe4b266bf2edcac7f
-
SHA1
3dc5bdce91e14979e1570ac6df65297a754e303d
-
SHA256
7740eff727b10a127e3b54a572020a63a5432c6b98e9ec8b4890a5824f055434
-
SHA512
63329d79e12761c1078f851638994aa5ca84f4cee4b0213a316965536b2fc841c78d6d4b5bef30d33361ab232215f08d41f624e381232f69b3c8e6388cc39564
-
SSDEEP
6144:5uHOWnmy+g4VrG1VVE+IBuHOmnmy+g4VrG1VVE+IBuHOmnmy+g4VrG1VVE+IwQXH:gOWKudOmKudOmKuFQX5erQZb+md4w1UM
Malware Config
Targets
-
-
Target
7740eff727b10a127e3b54a572020a63a5432c6b98e9ec8b4890a5824f055434
-
Size
978KB
-
MD5
853005c76edbabdbe4b266bf2edcac7f
-
SHA1
3dc5bdce91e14979e1570ac6df65297a754e303d
-
SHA256
7740eff727b10a127e3b54a572020a63a5432c6b98e9ec8b4890a5824f055434
-
SHA512
63329d79e12761c1078f851638994aa5ca84f4cee4b0213a316965536b2fc841c78d6d4b5bef30d33361ab232215f08d41f624e381232f69b3c8e6388cc39564
-
SSDEEP
6144:5uHOWnmy+g4VrG1VVE+IBuHOmnmy+g4VrG1VVE+IBuHOmnmy+g4VrG1VVE+IwQXH:gOWKudOmKudOmKuFQX5erQZb+md4w1UM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Executes dropped EXE
-
Sets file execution options in registry
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-