General
-
Target
71cce659b6cae3dadd02337821f415e9
-
Size
593KB
-
Sample
231226-qkyzdsaae2
-
MD5
71cce659b6cae3dadd02337821f415e9
-
SHA1
5bf56ea4db640ab4120bb0c56893ea3b2dca1e37
-
SHA256
daf32a7b04a1fb4a2db7e80f4744c618a90feb8498039c7f9ef7709f89abfea5
-
SHA512
df9696ae2aaabb5fc288e0be90ccc963cf02c5a29004fc5fd8093262f63e950b0d8f988e3fa231ddf3da333134c50759c09ce05ca17cf0276ed3d99aef02f6a7
-
SSDEEP
6144:UZfec9EbXDk6RkoKU/UOPSe570Szp3bE2EJuHOv/UOPSe570Szp3bE2Ete/u:UZWtI6RkJOB0vwOkOB0vWu
Malware Config
Targets
-
-
Target
71cce659b6cae3dadd02337821f415e9
-
Size
593KB
-
MD5
71cce659b6cae3dadd02337821f415e9
-
SHA1
5bf56ea4db640ab4120bb0c56893ea3b2dca1e37
-
SHA256
daf32a7b04a1fb4a2db7e80f4744c618a90feb8498039c7f9ef7709f89abfea5
-
SHA512
df9696ae2aaabb5fc288e0be90ccc963cf02c5a29004fc5fd8093262f63e950b0d8f988e3fa231ddf3da333134c50759c09ce05ca17cf0276ed3d99aef02f6a7
-
SSDEEP
6144:UZfec9EbXDk6RkoKU/UOPSe570Szp3bE2EJuHOv/UOPSe570Szp3bE2Ete/u:UZWtI6RkJOB0vwOkOB0vWu
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-