General
-
Target
6c04676075f72ada8a24bdd2b64b0149
-
Size
1.0MB
-
Sample
231226-nyp8asgbh2
-
MD5
6c04676075f72ada8a24bdd2b64b0149
-
SHA1
8505261e7226ea6c71bf245429055573c43bf6a8
-
SHA256
5678b602c4774181297fad07f2f13e62ab229f29cb732fa2e0f1a851b1fd5396
-
SHA512
e96a5d4217a9eb0ad467a0794392f903607846fc641bf3c2c304612aa6f7e1e51138e06e673fa47e3d2f70a747388139729b0ab4217443266c7468e32bdd3860
-
SSDEEP
12288:UZWtI6RkUuxerQZb+md4w1UAY+erQZb+md4w1UM:Uuha5erQZb+md4wmAY+erQZb+md4wmM
Malware Config
Targets
-
-
Target
6c04676075f72ada8a24bdd2b64b0149
-
Size
1.0MB
-
MD5
6c04676075f72ada8a24bdd2b64b0149
-
SHA1
8505261e7226ea6c71bf245429055573c43bf6a8
-
SHA256
5678b602c4774181297fad07f2f13e62ab229f29cb732fa2e0f1a851b1fd5396
-
SHA512
e96a5d4217a9eb0ad467a0794392f903607846fc641bf3c2c304612aa6f7e1e51138e06e673fa47e3d2f70a747388139729b0ab4217443266c7468e32bdd3860
-
SSDEEP
12288:UZWtI6RkUuxerQZb+md4w1UAY+erQZb+md4w1UM:Uuha5erQZb+md4wmAY+erQZb+md4wmM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-