General
-
Target
7fa448eefa2cfd0a01a97b5d203e7ec6
-
Size
8.5MB
-
Sample
231226-vsgsashfb3
-
MD5
7fa448eefa2cfd0a01a97b5d203e7ec6
-
SHA1
d67b82d19acaf087820212c2a5502c151aa627f8
-
SHA256
1798e22250d197205fda2a957d2b3cc355616b73366e6e34dbfa9134677aa78d
-
SHA512
68965810c4049da33a946561bcb516d294d9321d3e5d38819f97d6b0cff19401c70dc3e910e2d0fcabd091f6fd61b7d6c97eecc5dbca404ea36a1dc1d7c74e5f
-
SSDEEP
196608:7r2Ur2Ur2Ur2Ur2kr2Ur2Ur2Ur2Ur2kr2Ur2Ur2Ur2Ur2m:n2q2q2q2q2a2q2q2q2q2a2q2q2q2q2m
Malware Config
Targets
-
-
Target
7fa448eefa2cfd0a01a97b5d203e7ec6
-
Size
8.5MB
-
MD5
7fa448eefa2cfd0a01a97b5d203e7ec6
-
SHA1
d67b82d19acaf087820212c2a5502c151aa627f8
-
SHA256
1798e22250d197205fda2a957d2b3cc355616b73366e6e34dbfa9134677aa78d
-
SHA512
68965810c4049da33a946561bcb516d294d9321d3e5d38819f97d6b0cff19401c70dc3e910e2d0fcabd091f6fd61b7d6c97eecc5dbca404ea36a1dc1d7c74e5f
-
SSDEEP
196608:7r2Ur2Ur2Ur2Ur2kr2Ur2Ur2Ur2Ur2kr2Ur2Ur2Ur2Ur2m:n2q2q2q2q2a2q2q2q2q2a2q2q2q2q2m
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-