General
-
Target
0e3a3899d6a6ea9022e63270f3ecc6f6
-
Size
1.1MB
-
Sample
231224-ydq9zaefd5
-
MD5
0e3a3899d6a6ea9022e63270f3ecc6f6
-
SHA1
d508795dee0d15242dccf2a72bda2b503d2c4113
-
SHA256
e143ed4c3cc713bdc548e6e55e244147c16318f320a0d09cdb413d032e91ea05
-
SHA512
b6c5a2bfc2331bee83aab16097dd774b100ea28ea602b7e918be9d711354a744c4cb003d0217e4856e22e3e15456f2d0f86b35b8ab5fcf4c8388a354c70f6b5a
-
SSDEEP
12288:UZWtI6RkEakuROB0R+Tzv28UyGk72OyakuROB0R+Tzv28UyGk7g:Uuhab5O7TzurQF5O7TzurQU
Malware Config
Targets
-
-
Target
0e3a3899d6a6ea9022e63270f3ecc6f6
-
Size
1.1MB
-
MD5
0e3a3899d6a6ea9022e63270f3ecc6f6
-
SHA1
d508795dee0d15242dccf2a72bda2b503d2c4113
-
SHA256
e143ed4c3cc713bdc548e6e55e244147c16318f320a0d09cdb413d032e91ea05
-
SHA512
b6c5a2bfc2331bee83aab16097dd774b100ea28ea602b7e918be9d711354a744c4cb003d0217e4856e22e3e15456f2d0f86b35b8ab5fcf4c8388a354c70f6b5a
-
SSDEEP
12288:UZWtI6RkEakuROB0R+Tzv28UyGk72OyakuROB0R+Tzv28UyGk7g:Uuhab5O7TzurQF5O7TzurQU
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-