General
-
Target
98e4a2d20efc0aa9d4c54499dd3b04b500ed1a13baf40776b1f3fb1baff76b6b
-
Size
151KB
-
Sample
221202-bc4gksgh72
-
MD5
b7d4ce1f3ab9e775b561172fbcb94d30
-
SHA1
a1e1b17b2c1145d1d33a9e5bdd9d51e483798dbc
-
SHA256
98e4a2d20efc0aa9d4c54499dd3b04b500ed1a13baf40776b1f3fb1baff76b6b
-
SHA512
44446a3f7cbe3d1c4bc0d871d9920d19473799168f04a9accc37fc43855ee26c87bde5aefa203c46f40b5bc259592578035e6f38a2dcab0e82bafea3a85895ed
-
SSDEEP
3072:C3uSoledMJvL8W9yk5nOSr2ROWKi6/CHDmY65kzDfDgss8/:ioXJvL8Wou/2ROiqCj16izzh
Malware Config
Targets
-
-
Target
98e4a2d20efc0aa9d4c54499dd3b04b500ed1a13baf40776b1f3fb1baff76b6b
-
Size
151KB
-
MD5
b7d4ce1f3ab9e775b561172fbcb94d30
-
SHA1
a1e1b17b2c1145d1d33a9e5bdd9d51e483798dbc
-
SHA256
98e4a2d20efc0aa9d4c54499dd3b04b500ed1a13baf40776b1f3fb1baff76b6b
-
SHA512
44446a3f7cbe3d1c4bc0d871d9920d19473799168f04a9accc37fc43855ee26c87bde5aefa203c46f40b5bc259592578035e6f38a2dcab0e82bafea3a85895ed
-
SSDEEP
3072:C3uSoledMJvL8W9yk5nOSr2ROWKi6/CHDmY65kzDfDgss8/:ioXJvL8Wou/2ROiqCj16izzh
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-