General
-
Target
283fc208f92a1bf529aad9fce02ce4f0
-
Size
771KB
-
Sample
231225-skmbpsgad2
-
MD5
283fc208f92a1bf529aad9fce02ce4f0
-
SHA1
895f9c2f6fc2b6ed362f71a6f465b8f8fcf2fbb5
-
SHA256
a036e32af0bd59c5248d9dff592b506f8682d0d34124b88824742cd6be372319
-
SHA512
21a889845160a53f33665ef48fdab0e13314b953c2cf41394775e3c4da82ce39353a077f7dff384dde20bfa84a1a70014d4d9118a0830972abd4d045bb1753f5
-
SSDEEP
12288:UZWtI6Rk/eZJys73dOvXDpNjNe8mGOdeZJys73dOvXDpNjNe8mOeZJys73dOvXDv:Uuha/eZJ8NI8SeZJ8NI8/eZJ8NI8r
Malware Config
Targets
-
-
Target
283fc208f92a1bf529aad9fce02ce4f0
-
Size
771KB
-
MD5
283fc208f92a1bf529aad9fce02ce4f0
-
SHA1
895f9c2f6fc2b6ed362f71a6f465b8f8fcf2fbb5
-
SHA256
a036e32af0bd59c5248d9dff592b506f8682d0d34124b88824742cd6be372319
-
SHA512
21a889845160a53f33665ef48fdab0e13314b953c2cf41394775e3c4da82ce39353a077f7dff384dde20bfa84a1a70014d4d9118a0830972abd4d045bb1753f5
-
SSDEEP
12288:UZWtI6Rk/eZJys73dOvXDpNjNe8mGOdeZJys73dOvXDpNjNe8mOeZJys73dOvXDv:Uuha/eZJ8NI8SeZJ8NI8/eZJ8NI8r
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-