General
-
Target
4bf733d1ee79e289787bdea584b50a0a
-
Size
2.7MB
-
Sample
240108-vehgnsefe4
-
MD5
4bf733d1ee79e289787bdea584b50a0a
-
SHA1
f753053abbe82af641ec73e0ba3cae2ef326701e
-
SHA256
64d7a12a50b03cb6a13d6b25911570ccce45cbed74d8eb4b1a67f0a7bf503cdf
-
SHA512
d0e61d75688d338f4acd3534422ae96071d75f4deae319b736e513b1448250a834508d62bd8d6c5c7f8e90b0dabb918c500908335ca4022ecab093459024f595
-
SSDEEP
49152:bzerQZbd2BerQZbd2BerQZbd2BerQZbd2N8r:erQZbrQZbrQZbrQZr
Malware Config
Targets
-
-
Target
4bf733d1ee79e289787bdea584b50a0a
-
Size
2.7MB
-
MD5
4bf733d1ee79e289787bdea584b50a0a
-
SHA1
f753053abbe82af641ec73e0ba3cae2ef326701e
-
SHA256
64d7a12a50b03cb6a13d6b25911570ccce45cbed74d8eb4b1a67f0a7bf503cdf
-
SHA512
d0e61d75688d338f4acd3534422ae96071d75f4deae319b736e513b1448250a834508d62bd8d6c5c7f8e90b0dabb918c500908335ca4022ecab093459024f595
-
SSDEEP
49152:bzerQZbd2BerQZbd2BerQZbd2BerQZbd2N8r:erQZbrQZbrQZbrQZr
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-