General
-
Target
55772ed470a5ed02bd8ded6fe65a65aa
-
Size
806KB
-
Sample
240112-ev7hqsfcg8
-
MD5
55772ed470a5ed02bd8ded6fe65a65aa
-
SHA1
f40ba7b95ca44ed71747382bbd8639272cc5289e
-
SHA256
37928959e5a355aac2c683560edcd248e853e4fa55d94c5ab838ba8596fd438a
-
SHA512
be98ed79808aed1fda4c43b48606f66e3c543fc22ea5935048ad629165fb5da17abd980dc33e70f1a850f0b6ca4c8fa1fde3ebe32d23da33be203fd9a199ff48
-
SSDEEP
12288:UZWtI6RkgUOB0heZJys73dOvXDpNjNe8TOB0heZJys73dOvXDpNjNe86q+ut:UuhaHOieZJ8NI8TOieZJ8NI8Fv
Malware Config
Targets
-
-
Target
55772ed470a5ed02bd8ded6fe65a65aa
-
Size
806KB
-
MD5
55772ed470a5ed02bd8ded6fe65a65aa
-
SHA1
f40ba7b95ca44ed71747382bbd8639272cc5289e
-
SHA256
37928959e5a355aac2c683560edcd248e853e4fa55d94c5ab838ba8596fd438a
-
SHA512
be98ed79808aed1fda4c43b48606f66e3c543fc22ea5935048ad629165fb5da17abd980dc33e70f1a850f0b6ca4c8fa1fde3ebe32d23da33be203fd9a199ff48
-
SSDEEP
12288:UZWtI6RkgUOB0heZJys73dOvXDpNjNe8TOB0heZJys73dOvXDpNjNe86q+ut:UuhaHOieZJ8NI8TOieZJ8NI8Fv
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-