General
-
Target
ea10510ee3b00f57dce76c9d05883152.exe
-
Size
817KB
-
Sample
240109-xln9xageeq
-
MD5
ea10510ee3b00f57dce76c9d05883152
-
SHA1
ae901e0afe238377b21b7e614d16dd2bc1aa74a3
-
SHA256
832c0a64e923036bd812040c8dc6f4a9310e55342c19622da3e95a29abed1bb8
-
SHA512
fd36bad137749e96cdcde309eb14a28dc8774e8bfe2a6b57a6398333053772ee8fcb2736de42a72e6c48dfb0e5f4cec11e0aa8a93c11e157887b24bf8928182d
-
SSDEEP
6144:UZfec9EbXDk6RklKAE2EBE2EJuHOLE2EBE2EGGFrQZb++tdsHP4+QfI6UM:UZWtI6RkIMwOGMGerQZb+md4w1UM
Malware Config
Targets
-
-
Target
ea10510ee3b00f57dce76c9d05883152.exe
-
Size
817KB
-
MD5
ea10510ee3b00f57dce76c9d05883152
-
SHA1
ae901e0afe238377b21b7e614d16dd2bc1aa74a3
-
SHA256
832c0a64e923036bd812040c8dc6f4a9310e55342c19622da3e95a29abed1bb8
-
SHA512
fd36bad137749e96cdcde309eb14a28dc8774e8bfe2a6b57a6398333053772ee8fcb2736de42a72e6c48dfb0e5f4cec11e0aa8a93c11e157887b24bf8928182d
-
SSDEEP
6144:UZfec9EbXDk6RklKAE2EBE2EJuHOLE2EBE2EGGFrQZb++tdsHP4+QfI6UM:UZWtI6RkIMwOGMGerQZb+md4w1UM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-