General
-
Target
09a6c3e30785c2f5c5729bf0151f8ee6
-
Size
4.0MB
-
Sample
231225-gmlx6sbdh2
-
MD5
09a6c3e30785c2f5c5729bf0151f8ee6
-
SHA1
440a2deaec46b9b88d5abb0ec9ad47d13f8c0a31
-
SHA256
c81b175882da26ab6754f2920f09e20b85282efb689c9fd7ec5c5cb5afac0e3f
-
SHA512
212752fb1c6ad86cc7baafc0374bcdf2c1059193d23bf73a1717902e93a0458cd7d29ceefb27cc344bb1a099c7a8776f85a35751b71708e9f212595a10125226
-
SSDEEP
49152:bierQZbd2berQZbd2berQZbd2berQZbd2berQZbd2berQZbd2O9:/rQZJrQZJrQZJrQZJrQZJrQZz
Malware Config
Targets
-
-
Target
09a6c3e30785c2f5c5729bf0151f8ee6
-
Size
4.0MB
-
MD5
09a6c3e30785c2f5c5729bf0151f8ee6
-
SHA1
440a2deaec46b9b88d5abb0ec9ad47d13f8c0a31
-
SHA256
c81b175882da26ab6754f2920f09e20b85282efb689c9fd7ec5c5cb5afac0e3f
-
SHA512
212752fb1c6ad86cc7baafc0374bcdf2c1059193d23bf73a1717902e93a0458cd7d29ceefb27cc344bb1a099c7a8776f85a35751b71708e9f212595a10125226
-
SSDEEP
49152:bierQZbd2berQZbd2berQZbd2berQZbd2berQZbd2berQZbd2O9:/rQZJrQZJrQZJrQZJrQZJrQZz
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-