General
-
Target
0ed97481c52381381e6434215f71841b
-
Size
398KB
-
Sample
231230-fbzjfsfbhp
-
MD5
0ed97481c52381381e6434215f71841b
-
SHA1
2c260c1c16820337c46b9d09694db863044f76a3
-
SHA256
bb7d97f652fe8bf7d128bd4bf0e0d2cad648041d285e84bd07e7637f2fa71acf
-
SHA512
f03a8be1a8ce77d91be3a9a69b2e1fd6a882b457943801dcdc50baf3f71b50d9200d0318c75bff625a94103b904316ac19f9cd3257157df47e5668f3fca7ef81
-
SSDEEP
6144:cKZldDvxWH0Kk+R3ObWUVqXFyRA1y5E9xLWwpPleMYesitEbqDIQv6xul:bldLx20K7KHVe1yuLTHYS6qDXv6e
Malware Config
Targets
-
-
Target
0ed97481c52381381e6434215f71841b
-
Size
398KB
-
MD5
0ed97481c52381381e6434215f71841b
-
SHA1
2c260c1c16820337c46b9d09694db863044f76a3
-
SHA256
bb7d97f652fe8bf7d128bd4bf0e0d2cad648041d285e84bd07e7637f2fa71acf
-
SHA512
f03a8be1a8ce77d91be3a9a69b2e1fd6a882b457943801dcdc50baf3f71b50d9200d0318c75bff625a94103b904316ac19f9cd3257157df47e5668f3fca7ef81
-
SSDEEP
6144:cKZldDvxWH0Kk+R3ObWUVqXFyRA1y5E9xLWwpPleMYesitEbqDIQv6xul:bldLx20K7KHVe1yuLTHYS6qDXv6e
Score8/10-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1