General
-
Target
5c8c735108b6771bc6be3f3f13b6d24c
-
Size
51KB
-
Sample
231226-ja64pabhgm
-
MD5
5c8c735108b6771bc6be3f3f13b6d24c
-
SHA1
e5dc207235f98c83b48060dfca021b6b3c36aa37
-
SHA256
75fdfab7d4c629aa0a57392c89ffbee3d9502ad6204622e2247d564345b3b7ad
-
SHA512
94f6445cbcfa0e05029456911fb2ae9bc9161810a1c126b5ba7d852339e0f84a78118bf1a48583d76377bf052609f6bd48fcfc3fef5a7dfea934be447bb3b16f
-
SSDEEP
768:Hw+F8XmROl6xrczvQ45jtNZ4UTpuklKfwpTWXqYSsPMNynD+KCgdNDb/Xaln:Hw+F8XmC6xrQxTkWTSKsbX/XA
Malware Config
Targets
-
-
Target
5c8c735108b6771bc6be3f3f13b6d24c
-
Size
51KB
-
MD5
5c8c735108b6771bc6be3f3f13b6d24c
-
SHA1
e5dc207235f98c83b48060dfca021b6b3c36aa37
-
SHA256
75fdfab7d4c629aa0a57392c89ffbee3d9502ad6204622e2247d564345b3b7ad
-
SHA512
94f6445cbcfa0e05029456911fb2ae9bc9161810a1c126b5ba7d852339e0f84a78118bf1a48583d76377bf052609f6bd48fcfc3fef5a7dfea934be447bb3b16f
-
SSDEEP
768:Hw+F8XmROl6xrczvQ45jtNZ4UTpuklKfwpTWXqYSsPMNynD+KCgdNDb/Xaln:Hw+F8XmC6xrQxTkWTSKsbX/XA
Score10/10-
Modifies WinLogon for persistence
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-