General
-
Target
17d94245014d2169d3d681ec486bc9da
-
Size
1.6MB
-
Sample
231230-n627tschfn
-
MD5
17d94245014d2169d3d681ec486bc9da
-
SHA1
42c645f863923483eb3ecd91ef3ff4ddea946557
-
SHA256
bc545d09e0c32fcb8c885a33b1b7ad313a7254fed4fc22a88eaadda382f1276f
-
SHA512
6326b2337e7e894a72210c5bf939f2ea685bab96a86c84d3ca5cf0ce130b5eb0d6da4aaa81def13f702c5632f133ce8833fc9ea2fa0b7b9f31b0b72d817157d9
-
SSDEEP
12288:UZWtI6RksOB0v2eZJys73dOvXDpNjNe8NuMpX4aBaa4sDEpUE9QDV9U11S/3zKmh:UuhasOA2eZJ8NI8NahxAONS4w
Malware Config
Targets
-
-
Target
17d94245014d2169d3d681ec486bc9da
-
Size
1.6MB
-
MD5
17d94245014d2169d3d681ec486bc9da
-
SHA1
42c645f863923483eb3ecd91ef3ff4ddea946557
-
SHA256
bc545d09e0c32fcb8c885a33b1b7ad313a7254fed4fc22a88eaadda382f1276f
-
SHA512
6326b2337e7e894a72210c5bf939f2ea685bab96a86c84d3ca5cf0ce130b5eb0d6da4aaa81def13f702c5632f133ce8833fc9ea2fa0b7b9f31b0b72d817157d9
-
SSDEEP
12288:UZWtI6RksOB0v2eZJys73dOvXDpNjNe8NuMpX4aBaa4sDEpUE9QDV9U11S/3zKmh:UuhasOA2eZJ8NI8NahxAONS4w
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-