General
-
Target
f862f5e3474b77e5e255aad9320b7b1c4d5f2f13f5d8ddfc5b3b211beddf75da
-
Size
151KB
-
Sample
221202-bblv5scb8z
-
MD5
42994015a336a1d704bce0dd0fcebe40
-
SHA1
664393fbda3dd9ba1dee22bf9e9f783dd407fb1c
-
SHA256
f862f5e3474b77e5e255aad9320b7b1c4d5f2f13f5d8ddfc5b3b211beddf75da
-
SHA512
8f33d6625128ab7d8744c0e10e6dc7d93dc580b9eb32c3c4bbea872eebc0d890ee6277044f6282f763e05016b180bd2f9d717f6e6a4083c388ecf7f100853c2c
-
SSDEEP
3072:KukKWBQpZPJE2KawoZiLSUbrpdEbcowle:KukPBsYcLUbFdEbcov
Malware Config
Targets
-
-
Target
f862f5e3474b77e5e255aad9320b7b1c4d5f2f13f5d8ddfc5b3b211beddf75da
-
Size
151KB
-
MD5
42994015a336a1d704bce0dd0fcebe40
-
SHA1
664393fbda3dd9ba1dee22bf9e9f783dd407fb1c
-
SHA256
f862f5e3474b77e5e255aad9320b7b1c4d5f2f13f5d8ddfc5b3b211beddf75da
-
SHA512
8f33d6625128ab7d8744c0e10e6dc7d93dc580b9eb32c3c4bbea872eebc0d890ee6277044f6282f763e05016b180bd2f9d717f6e6a4083c388ecf7f100853c2c
-
SSDEEP
3072:KukKWBQpZPJE2KawoZiLSUbrpdEbcowle:KukPBsYcLUbFdEbcov
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-