General
-
Target
6978fe4455ead55e477feb2fc5f89f26c856490bb48c281cfd3688f6bb4d49b7
-
Size
903KB
-
Sample
221129-ed8pgace37
-
MD5
43fe56bd883cd2c7e6b3df65e2e23a13
-
SHA1
86f2643ffe8c051e4e0b5ad37ed433512c09c59b
-
SHA256
6978fe4455ead55e477feb2fc5f89f26c856490bb48c281cfd3688f6bb4d49b7
-
SHA512
3d9c383c623c8ad53a5f6ac1840c2a3f0a7610b0d2024060692978d5bd608b2368484a3f2ec1ff8c576ac9228b2d06fc2a7c261d453618f282c96a4bbe9252ef
-
SSDEEP
12288:CG/oHZId8zgYzkTC25RpKnnKUxE/EgnL3ZX9fnKiW9FdUVyFKwaB:CGNicYzk+7vxE/NXnlW9oVcG
Malware Config
Targets
-
-
Target
6978fe4455ead55e477feb2fc5f89f26c856490bb48c281cfd3688f6bb4d49b7
-
Size
903KB
-
MD5
43fe56bd883cd2c7e6b3df65e2e23a13
-
SHA1
86f2643ffe8c051e4e0b5ad37ed433512c09c59b
-
SHA256
6978fe4455ead55e477feb2fc5f89f26c856490bb48c281cfd3688f6bb4d49b7
-
SHA512
3d9c383c623c8ad53a5f6ac1840c2a3f0a7610b0d2024060692978d5bd608b2368484a3f2ec1ff8c576ac9228b2d06fc2a7c261d453618f282c96a4bbe9252ef
-
SSDEEP
12288:CG/oHZId8zgYzkTC25RpKnnKUxE/EgnL3ZX9fnKiW9FdUVyFKwaB:CGNicYzk+7vxE/NXnlW9oVcG
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-