General
-
Target
70e9d9812e6c883192a4efc80d98f101
-
Size
1.5MB
-
Sample
240124-adjccsddd4
-
MD5
70e9d9812e6c883192a4efc80d98f101
-
SHA1
ad959d31ef6ad3686f2256068805bb62d358068a
-
SHA256
a91f72324c1ede83177f3381f54c1198a029d26640b2b12be5b0b0bb2d6ea86b
-
SHA512
f332851196cd86fd8f3a4bfb6afb148aa28ad224f9e39b2f1ab89d44d6e1d757a87cae488b37f864cba423a4cee692f1cc342724d8d269fa39743671f26960a9
-
SSDEEP
24576:UuhaV2eZJ8NI8eF2eZJ8NI8eF2eZJ8NI8eF2eZJ8NI8el4:b88e8e8e89
Malware Config
Targets
-
-
Target
70e9d9812e6c883192a4efc80d98f101
-
Size
1.5MB
-
MD5
70e9d9812e6c883192a4efc80d98f101
-
SHA1
ad959d31ef6ad3686f2256068805bb62d358068a
-
SHA256
a91f72324c1ede83177f3381f54c1198a029d26640b2b12be5b0b0bb2d6ea86b
-
SHA512
f332851196cd86fd8f3a4bfb6afb148aa28ad224f9e39b2f1ab89d44d6e1d757a87cae488b37f864cba423a4cee692f1cc342724d8d269fa39743671f26960a9
-
SSDEEP
24576:UuhaV2eZJ8NI8eF2eZJ8NI8eF2eZJ8NI8eF2eZJ8NI8el4:b88e8e8e89
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-