General
-
Target
63b95c9141c846f1913c04c1d16a491a
-
Size
405KB
-
Sample
240117-1yxzcsgah7
-
MD5
63b95c9141c846f1913c04c1d16a491a
-
SHA1
2d2e91883d30ad38498b5d358d79bb5a4e3110f3
-
SHA256
19c715b33ea849ec4735f21b29b0ae432fe0b3e2f5dba0ba315d855aa3159563
-
SHA512
c86f1d5328ee6d55ad1d1e224414f588c5f98ea48c0f5434b96513d62c32d5cc46b0774f54af1ee3d34dd5b37a1a994ac81bb889de4203e8fd1af0beaa249fe4
-
SSDEEP
6144:UZfec9EbXDk6Rk8K6rG1VVE+IRuHOdrG1VVE+Ik:UZWtI6RkAu9OhuF
Malware Config
Targets
-
-
Target
63b95c9141c846f1913c04c1d16a491a
-
Size
405KB
-
MD5
63b95c9141c846f1913c04c1d16a491a
-
SHA1
2d2e91883d30ad38498b5d358d79bb5a4e3110f3
-
SHA256
19c715b33ea849ec4735f21b29b0ae432fe0b3e2f5dba0ba315d855aa3159563
-
SHA512
c86f1d5328ee6d55ad1d1e224414f588c5f98ea48c0f5434b96513d62c32d5cc46b0774f54af1ee3d34dd5b37a1a994ac81bb889de4203e8fd1af0beaa249fe4
-
SSDEEP
6144:UZfec9EbXDk6Rk8K6rG1VVE+IRuHOdrG1VVE+Ik:UZWtI6RkAu9OhuF
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-