General
-
Target
a754b0a3e6c81e5c6c74508e6c251b35.exe
-
Size
597KB
-
Sample
240107-x3gamadcc9
-
MD5
a754b0a3e6c81e5c6c74508e6c251b35
-
SHA1
503dda3c06e7caba713cbbca11cb9c5da2da9483
-
SHA256
ce6b9254135c778d9acabac545328188aa076978f310aa62c725c8b9349aec72
-
SHA512
5eb1ac6ab4dfcbb313fa57cd7276570c61eaf969ad3fa8bb97ef0d3a4bc1d2eb63151ba54fc5c75f22cd60d24c1112a60b980013954ac859ab83d3bfcb5219c4
-
SSDEEP
12288:UZWtI6RkHeZJys73dOvXDpNjNe8NuPupOB0Jut:UuhaHeZJ8NI8nOB
Static task
static1
Behavioral task
behavioral1
Sample
a754b0a3e6c81e5c6c74508e6c251b35.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
a754b0a3e6c81e5c6c74508e6c251b35.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
a754b0a3e6c81e5c6c74508e6c251b35.exe
-
Size
597KB
-
MD5
a754b0a3e6c81e5c6c74508e6c251b35
-
SHA1
503dda3c06e7caba713cbbca11cb9c5da2da9483
-
SHA256
ce6b9254135c778d9acabac545328188aa076978f310aa62c725c8b9349aec72
-
SHA512
5eb1ac6ab4dfcbb313fa57cd7276570c61eaf969ad3fa8bb97ef0d3a4bc1d2eb63151ba54fc5c75f22cd60d24c1112a60b980013954ac859ab83d3bfcb5219c4
-
SSDEEP
12288:UZWtI6RkHeZJys73dOvXDpNjNe8NuPupOB0Jut:UuhaHeZJ8NI8nOB
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-