General
-
Target
795d3923799bb06805fd2c0d0278303a
-
Size
794KB
-
Sample
231226-s1y1fadecl
-
MD5
795d3923799bb06805fd2c0d0278303a
-
SHA1
9d836a37012b5ac03d10b3d83da3438e08e76bc8
-
SHA256
c7ce75e5d74e917e3188a45e5aa0495983fb598ff158f1aa0e8cefd022966c5f
-
SHA512
b9cf09f25ad7d98665a9dedfd23de860be6169599f76b932ed480d73b33f2c3f809d5e7f4963f00140252456f1c676571363c7addcca35887a419490c01c3036
-
SSDEEP
12288:UZWtI6RkKBVerQZb+md4w1UArKu39ggKF1mDaz+C:UuhaKBVerQZb+md4wmA0FUDaz+C
Malware Config
Targets
-
-
Target
795d3923799bb06805fd2c0d0278303a
-
Size
794KB
-
MD5
795d3923799bb06805fd2c0d0278303a
-
SHA1
9d836a37012b5ac03d10b3d83da3438e08e76bc8
-
SHA256
c7ce75e5d74e917e3188a45e5aa0495983fb598ff158f1aa0e8cefd022966c5f
-
SHA512
b9cf09f25ad7d98665a9dedfd23de860be6169599f76b932ed480d73b33f2c3f809d5e7f4963f00140252456f1c676571363c7addcca35887a419490c01c3036
-
SSDEEP
12288:UZWtI6RkKBVerQZb+md4w1UArKu39ggKF1mDaz+C:UuhaKBVerQZb+md4wmA0FUDaz+C
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-