General
-
Target
d5df0310915aa747ddd58184d99d398b516e67e092386488d90c8ccab8627f77
-
Size
149KB
-
Sample
221203-ze43wsdc48
-
MD5
093ba42f7a44ebcff8e048c72e8aa72a
-
SHA1
7840f40067a3eaa0c80cbe6620558713b35398a0
-
SHA256
d5df0310915aa747ddd58184d99d398b516e67e092386488d90c8ccab8627f77
-
SHA512
42b54f3e4852a47f4f1ed3bef4c5b4a9ed5d293842b223c7466b911f2de99564798aca5d81e1eaea43ebd9d5cc714a1526113fbd79733b23349a4c779c68339d
-
SSDEEP
3072:13uSoledMJvLWCnISE2KawoZiBBo2unNYdYgA3:foXJvLWCnAcIl+x3
Malware Config
Targets
-
-
Target
d5df0310915aa747ddd58184d99d398b516e67e092386488d90c8ccab8627f77
-
Size
149KB
-
MD5
093ba42f7a44ebcff8e048c72e8aa72a
-
SHA1
7840f40067a3eaa0c80cbe6620558713b35398a0
-
SHA256
d5df0310915aa747ddd58184d99d398b516e67e092386488d90c8ccab8627f77
-
SHA512
42b54f3e4852a47f4f1ed3bef4c5b4a9ed5d293842b223c7466b911f2de99564798aca5d81e1eaea43ebd9d5cc714a1526113fbd79733b23349a4c779c68339d
-
SSDEEP
3072:13uSoledMJvLWCnISE2KawoZiBBo2unNYdYgA3:foXJvLWCnAcIl+x3
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-