General
-
Target
2ca04eb54ae897699d148a4f55b6d0d7c70ff5cbc16edc262ace84ba61c82c46
-
Size
152KB
-
Sample
221207-ec5lesce29
-
MD5
1590def0bae94b38755ae5536fb06e6a
-
SHA1
e2ec0dbc91b0de4399546e6566b7e83524767585
-
SHA256
2ca04eb54ae897699d148a4f55b6d0d7c70ff5cbc16edc262ace84ba61c82c46
-
SHA512
5977eb2e9e7fdb13191da29c240c5bbdbd194e989186b578e680e235c58c5f21a972ebaff95a4d7d43664d11aeb92e6baef8f63f32920d4f623d7a2b15c1fef2
-
SSDEEP
3072:gM96grWMRbctog9i0H2RrjTuZdi4chXhdT/ZAuzH:gM96gnbctogLH2R644chvzzzH
Malware Config
Targets
-
-
Target
2ca04eb54ae897699d148a4f55b6d0d7c70ff5cbc16edc262ace84ba61c82c46
-
Size
152KB
-
MD5
1590def0bae94b38755ae5536fb06e6a
-
SHA1
e2ec0dbc91b0de4399546e6566b7e83524767585
-
SHA256
2ca04eb54ae897699d148a4f55b6d0d7c70ff5cbc16edc262ace84ba61c82c46
-
SHA512
5977eb2e9e7fdb13191da29c240c5bbdbd194e989186b578e680e235c58c5f21a972ebaff95a4d7d43664d11aeb92e6baef8f63f32920d4f623d7a2b15c1fef2
-
SSDEEP
3072:gM96grWMRbctog9i0H2RrjTuZdi4chXhdT/ZAuzH:gM96gnbctogLH2R644chvzzzH
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-