General
-
Target
3ec9e0e9a02d77b4e63bdff1e1dbe6dd
-
Size
938KB
-
Sample
231225-1x34zsgagl
-
MD5
3ec9e0e9a02d77b4e63bdff1e1dbe6dd
-
SHA1
34047a5fc715019519dbc8bd8249af5f125f4f4e
-
SHA256
3a088d9e570073f1b7b686deac2807732b5d733417deb8798c1f47ef2931cc52
-
SHA512
34fa5dff7f4c7a3592e75a7600f6399b6ca51758e53de2d94aeadc7e2bcbcdd9e85a164832d13e6c668c5b7deddbba581ff1305e2eca556841c41a5211cb1c15
-
SSDEEP
12288:UZWtI6RkHGOFkOB0Ju9OlGOFkOB0JurLZ:UuhauOhODZ
Malware Config
Targets
-
-
Target
3ec9e0e9a02d77b4e63bdff1e1dbe6dd
-
Size
938KB
-
MD5
3ec9e0e9a02d77b4e63bdff1e1dbe6dd
-
SHA1
34047a5fc715019519dbc8bd8249af5f125f4f4e
-
SHA256
3a088d9e570073f1b7b686deac2807732b5d733417deb8798c1f47ef2931cc52
-
SHA512
34fa5dff7f4c7a3592e75a7600f6399b6ca51758e53de2d94aeadc7e2bcbcdd9e85a164832d13e6c668c5b7deddbba581ff1305e2eca556841c41a5211cb1c15
-
SSDEEP
12288:UZWtI6RkHGOFkOB0Ju9OlGOFkOB0JurLZ:UuhauOhODZ
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-