General
-
Target
c2278dd0b86eee20f5f5fc1b70dfc82888b24580ba22d2f6a111ab5d579c6c00
-
Size
246KB
-
Sample
221206-af98vsdd8w
-
MD5
043cd2821afafea80689f5a4bb04d232
-
SHA1
9192eab9e98f9643643f57c747ed8ca54da2f1dc
-
SHA256
c2278dd0b86eee20f5f5fc1b70dfc82888b24580ba22d2f6a111ab5d579c6c00
-
SHA512
0860a16c3c2dd9d286153fbfaa20f5eee6dd9f9f0d071608b32dab3bdff090fa5988ee2bc3d34c1c7ffcc59d08ddf9aa84e02e732313124575082b5bad590ba2
-
SSDEEP
3072:T6f3wRqQxKvxnsRcaC9EIFUhWaNYtlH9dcMf6QYacU6BrnIQbxNrhkvcDrXC2w:GPeyxT9tU/mTH9dcMf6Q8R/rhkUD/w
Malware Config
Targets
-
-
Target
c2278dd0b86eee20f5f5fc1b70dfc82888b24580ba22d2f6a111ab5d579c6c00
-
Size
246KB
-
MD5
043cd2821afafea80689f5a4bb04d232
-
SHA1
9192eab9e98f9643643f57c747ed8ca54da2f1dc
-
SHA256
c2278dd0b86eee20f5f5fc1b70dfc82888b24580ba22d2f6a111ab5d579c6c00
-
SHA512
0860a16c3c2dd9d286153fbfaa20f5eee6dd9f9f0d071608b32dab3bdff090fa5988ee2bc3d34c1c7ffcc59d08ddf9aa84e02e732313124575082b5bad590ba2
-
SSDEEP
3072:T6f3wRqQxKvxnsRcaC9EIFUhWaNYtlH9dcMf6QYacU6BrnIQbxNrhkvcDrXC2w:GPeyxT9tU/mTH9dcMf6Q8R/rhkUD/w
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-