General
-
Target
29acd85a3064ac1e7185ba7b3ca840a5
-
Size
1.7MB
-
Sample
231231-fy3vdsbhem
-
MD5
29acd85a3064ac1e7185ba7b3ca840a5
-
SHA1
c7217dcc033dc183d2938b04ad4b6e4acae1695a
-
SHA256
835ff10769dffe66a2f73102b694862b435be949d0c19722f52b562c254870f4
-
SHA512
9819b04e4e6a31e117b5502084d2b6abbf778e4d0df106b5c71e524179c57fb4a0ab402af3c5b9463cb516b73163c2ab26a9d71e386c66227de67aa830ad3af7
-
SSDEEP
12288:UZWtI6RkAbu9O1bu9O1bu9O1bu9O1bu9O1buAqaerQZb+md4w1UM:UuhaAjjjjj4aerQZb+md4wmM
Malware Config
Targets
-
-
Target
29acd85a3064ac1e7185ba7b3ca840a5
-
Size
1.7MB
-
MD5
29acd85a3064ac1e7185ba7b3ca840a5
-
SHA1
c7217dcc033dc183d2938b04ad4b6e4acae1695a
-
SHA256
835ff10769dffe66a2f73102b694862b435be949d0c19722f52b562c254870f4
-
SHA512
9819b04e4e6a31e117b5502084d2b6abbf778e4d0df106b5c71e524179c57fb4a0ab402af3c5b9463cb516b73163c2ab26a9d71e386c66227de67aa830ad3af7
-
SSDEEP
12288:UZWtI6RkAbu9O1bu9O1bu9O1bu9O1bu9O1buAqaerQZb+md4w1UM:UuhaAjjjjj4aerQZb+md4wmM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-