General
-
Target
15c504cc35600092524bc96c890103c2
-
Size
868KB
-
Sample
231224-2d7hqsegc3
-
MD5
15c504cc35600092524bc96c890103c2
-
SHA1
862f368e32d133557e4607b8050d207abd120bda
-
SHA256
4a09787dce6076a77f88b412314a250e3c6e4abb82dbcfe55fa0e6cd554e47a9
-
SHA512
bff5ef1a8b7884fdf687bddd280eb102f5842bbadd7076955fdc1290427bc7d1412582cc2b750dcdbf31e99a0d48f38f8597d1db57454a52cb4bcfafb47828b4
-
SSDEEP
6144:UZfec9EbXDk6Rk8KzGFrQZb++tdsHP4+QfI6UsrG1VVE+Ih/UOPSe570Szp37/UD:UZWtI6RkderQZb+md4w1U4upOB07OB0H
Malware Config
Targets
-
-
Target
15c504cc35600092524bc96c890103c2
-
Size
868KB
-
MD5
15c504cc35600092524bc96c890103c2
-
SHA1
862f368e32d133557e4607b8050d207abd120bda
-
SHA256
4a09787dce6076a77f88b412314a250e3c6e4abb82dbcfe55fa0e6cd554e47a9
-
SHA512
bff5ef1a8b7884fdf687bddd280eb102f5842bbadd7076955fdc1290427bc7d1412582cc2b750dcdbf31e99a0d48f38f8597d1db57454a52cb4bcfafb47828b4
-
SSDEEP
6144:UZfec9EbXDk6Rk8KzGFrQZb++tdsHP4+QfI6UsrG1VVE+Ih/UOPSe570Szp37/UD:UZWtI6RkderQZb+md4w1U4upOB07OB0H
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-