General
-
Target
a54360c2490bb4298f884b32fe44c04d.exe
-
Size
687KB
-
Sample
240107-ycn38adfd4
-
MD5
a54360c2490bb4298f884b32fe44c04d
-
SHA1
dc8b50529b5f0fb9be15d013cbb087e74ba27cfd
-
SHA256
e6617fa220f30657709fd9bd945e0558df612c7e0aa4a914ac6dee0f7be62f1e
-
SHA512
44e9f8ef0433e9ebd2ed2b1bc77b1216064c229237b4b690e25e1d7b4d2ae9664f07c28cfb9ff1f6c8709e2896c4952348bc05d8e40a07b70b00ba9b1939b9e6
-
SSDEEP
6144:UZfec9EbXDk6RkdKzGFrQZb++tdsHP4+QfI6UgrG1VVE+Iw:UZWtI6Rk2erQZb+md4w1UsuN
Static task
static1
Behavioral task
behavioral1
Sample
a54360c2490bb4298f884b32fe44c04d.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
a54360c2490bb4298f884b32fe44c04d.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
a54360c2490bb4298f884b32fe44c04d.exe
-
Size
687KB
-
MD5
a54360c2490bb4298f884b32fe44c04d
-
SHA1
dc8b50529b5f0fb9be15d013cbb087e74ba27cfd
-
SHA256
e6617fa220f30657709fd9bd945e0558df612c7e0aa4a914ac6dee0f7be62f1e
-
SHA512
44e9f8ef0433e9ebd2ed2b1bc77b1216064c229237b4b690e25e1d7b4d2ae9664f07c28cfb9ff1f6c8709e2896c4952348bc05d8e40a07b70b00ba9b1939b9e6
-
SSDEEP
6144:UZfec9EbXDk6RkdKzGFrQZb++tdsHP4+QfI6UgrG1VVE+Iw:UZWtI6Rk2erQZb+md4w1UsuN
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-