General
-
Target
42ae48644e9625d5ed42cec80d0e6879
-
Size
1.6MB
-
Sample
240105-edyt9shdfk
-
MD5
42ae48644e9625d5ed42cec80d0e6879
-
SHA1
49a39b465c8a66e9f220b0814c47fd926ed9ed24
-
SHA256
a93871452a0d381a16ac32828298346cc389515aceb46f6592ae3a00bec239a4
-
SHA512
fd48935dc5f1e05da85a223b3e9e412b52cdeb14031d0650c2a396ccb2fd3fdd7e1ee7d00858305028b2e3b1b374e82377fcf51d4a8d7bc7353209df1b016c85
-
SSDEEP
12288:UZWtI6Rkzyunu9OVyunu9OVyunu9OVyunu9OVyunu9OVyunuPs/ocOB0H:UuhakOnOM
Malware Config
Targets
-
-
Target
42ae48644e9625d5ed42cec80d0e6879
-
Size
1.6MB
-
MD5
42ae48644e9625d5ed42cec80d0e6879
-
SHA1
49a39b465c8a66e9f220b0814c47fd926ed9ed24
-
SHA256
a93871452a0d381a16ac32828298346cc389515aceb46f6592ae3a00bec239a4
-
SHA512
fd48935dc5f1e05da85a223b3e9e412b52cdeb14031d0650c2a396ccb2fd3fdd7e1ee7d00858305028b2e3b1b374e82377fcf51d4a8d7bc7353209df1b016c85
-
SSDEEP
12288:UZWtI6Rkzyunu9OVyunu9OVyunu9OVyunu9OVyunu9OVyunuPs/ocOB0H:UuhakOnOM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-