General
-
Target
0d2d70dbb1b3d694150da5e6c61c9f7d
-
Size
465KB
-
Sample
231230-d6nz4afhf3
-
MD5
0d2d70dbb1b3d694150da5e6c61c9f7d
-
SHA1
cacc39e6446819005187730f8bab4e07c293b1d4
-
SHA256
4055af46e2475b95f9ed42be07dd3f0382b5c86d9f3c65dd57108ffde7be9882
-
SHA512
328f223c32bd9229a24893008d732e74857f80888fcfb2d1760849b3f1991aa91d5b148417b16d70d8430b581ed4645ae15ac23b584610fbd8b1b82cac75eb8c
-
SSDEEP
6144:UZfec9EbXDk6Rk8KFSE2EZ/UOPSe570Szp3Znmy+g4VrG1VVE+IA:UZWtI6Rk7ZyOB06Kut
Malware Config
Targets
-
-
Target
0d2d70dbb1b3d694150da5e6c61c9f7d
-
Size
465KB
-
MD5
0d2d70dbb1b3d694150da5e6c61c9f7d
-
SHA1
cacc39e6446819005187730f8bab4e07c293b1d4
-
SHA256
4055af46e2475b95f9ed42be07dd3f0382b5c86d9f3c65dd57108ffde7be9882
-
SHA512
328f223c32bd9229a24893008d732e74857f80888fcfb2d1760849b3f1991aa91d5b148417b16d70d8430b581ed4645ae15ac23b584610fbd8b1b82cac75eb8c
-
SSDEEP
6144:UZfec9EbXDk6Rk8KFSE2EZ/UOPSe570Szp3Znmy+g4VrG1VVE+IA:UZWtI6Rk7ZyOB06Kut
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-