General
-
Target
7b65c761a1948e86be0e24499bb50c24
-
Size
989KB
-
Sample
231226-tkmg5sggbn
-
MD5
7b65c761a1948e86be0e24499bb50c24
-
SHA1
7de8576e41b753cd3d8a917dd6b70af2ec4416ee
-
SHA256
f38ec05995d3635aaae18c1cf3c71d1d9dd4cf00a56cb127aa04e122c604ba66
-
SHA512
5e69bd1073b316c091fe3c232e3e670c3599f0d687c0bfa07cdb2844c4fad8f30a19b7a18d56e711edf109ed2c5dc4912c023693ef8c724af12773ef782b1978
-
SSDEEP
12288:UZWtI6RkvKupOB0vOB0kLOBKupOB0vOB0kX:UuhajOWOJWOWOJX
Malware Config
Targets
-
-
Target
7b65c761a1948e86be0e24499bb50c24
-
Size
989KB
-
MD5
7b65c761a1948e86be0e24499bb50c24
-
SHA1
7de8576e41b753cd3d8a917dd6b70af2ec4416ee
-
SHA256
f38ec05995d3635aaae18c1cf3c71d1d9dd4cf00a56cb127aa04e122c604ba66
-
SHA512
5e69bd1073b316c091fe3c232e3e670c3599f0d687c0bfa07cdb2844c4fad8f30a19b7a18d56e711edf109ed2c5dc4912c023693ef8c724af12773ef782b1978
-
SSDEEP
12288:UZWtI6RkvKupOB0vOB0kLOBKupOB0vOB0kX:UuhajOWOJWOWOJX
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-