General
-
Target
154d35946c0e52f7b2d7951b94e2b14f
-
Size
406KB
-
Sample
231225-lv5sgabfg8
-
MD5
154d35946c0e52f7b2d7951b94e2b14f
-
SHA1
3766fb79cb9b0bbd0ea2c170e0f37c381449d791
-
SHA256
264c41fe04bffb52b34a0417c6d14e3cd5df9ce7f513914f8843c9a7635e1b0f
-
SHA512
ee2a248da805a47ec29fdd0c32cd4e44c91ad051197da4d41d475441482ebd654536eb97d0469d306ef37a396e04c9165c9195c02b69b64f1ec989b6df609f34
-
SSDEEP
6144:UZfec9EbXDk6Rk8KWnmy+g4oE2EBE2EorG1VVE+IA:UZWtI6Rkg6Mkut
Malware Config
Targets
-
-
Target
154d35946c0e52f7b2d7951b94e2b14f
-
Size
406KB
-
MD5
154d35946c0e52f7b2d7951b94e2b14f
-
SHA1
3766fb79cb9b0bbd0ea2c170e0f37c381449d791
-
SHA256
264c41fe04bffb52b34a0417c6d14e3cd5df9ce7f513914f8843c9a7635e1b0f
-
SHA512
ee2a248da805a47ec29fdd0c32cd4e44c91ad051197da4d41d475441482ebd654536eb97d0469d306ef37a396e04c9165c9195c02b69b64f1ec989b6df609f34
-
SSDEEP
6144:UZfec9EbXDk6Rk8KWnmy+g4oE2EBE2EorG1VVE+IA:UZWtI6Rkg6Mkut
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-