General
-
Target
375a673d5dd46de0582384a47a70a64c.exe
-
Size
691KB
-
Sample
240110-xw8rasfaa7
-
MD5
375a673d5dd46de0582384a47a70a64c
-
SHA1
668f4a481755b54fdf56528e3787e481dddead4e
-
SHA256
dd49ee21f60257237b86e062c44cbbd32684204cb0d87af6498616ddc57bc96b
-
SHA512
0ab7a30a38ff13b76981e6bc41a1f941789c9fe5ba5eaa12bb897e2f59b0e0cc8d1d5fa9a1f761eab96401b84f482690f9e3c7f516ae9f46e36fe07946c94d86
-
SSDEEP
12288:UZWtI6Rk4KeZJys73dOvXDpNjNe8LOGKeZJys73dOvXDpNjNe8+qa:Uuha4KeZJ8NI8XKeZJ8NI85a
Malware Config
Targets
-
-
Target
375a673d5dd46de0582384a47a70a64c.exe
-
Size
691KB
-
MD5
375a673d5dd46de0582384a47a70a64c
-
SHA1
668f4a481755b54fdf56528e3787e481dddead4e
-
SHA256
dd49ee21f60257237b86e062c44cbbd32684204cb0d87af6498616ddc57bc96b
-
SHA512
0ab7a30a38ff13b76981e6bc41a1f941789c9fe5ba5eaa12bb897e2f59b0e0cc8d1d5fa9a1f761eab96401b84f482690f9e3c7f516ae9f46e36fe07946c94d86
-
SSDEEP
12288:UZWtI6Rk4KeZJys73dOvXDpNjNe8LOGKeZJys73dOvXDpNjNe8+qa:Uuha4KeZJ8NI8XKeZJ8NI85a
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-