General
-
Target
73422e9619ed949d581df9e0cbdb469b
-
Size
795KB
-
Sample
240125-ar1hsscdhk
-
MD5
73422e9619ed949d581df9e0cbdb469b
-
SHA1
4ac50c08d2a701db3e3e6cc8dc3df8d53128e9af
-
SHA256
7bf61e112c264b8a6fe1e9e18e7863ff600880c392d226bbfbf353ab788e35bc
-
SHA512
b19a5ddc0cf006dd8319b3e5d4434d654f3328716094cfbbd58141cefdaa79b166d49390a0db021d3aa63dfc11c3609a4f861d84d7d37053423464e5fc0118fe
-
SSDEEP
6144:UZfec9EbXDk6RklKI/UOPSe570Szp3bE2Ernmy+g43GFrQZb++tdsHP4+QfI6UM:UZWtI6RkeOB0vrIerQZb+md4w1UM
Malware Config
Targets
-
-
Target
73422e9619ed949d581df9e0cbdb469b
-
Size
795KB
-
MD5
73422e9619ed949d581df9e0cbdb469b
-
SHA1
4ac50c08d2a701db3e3e6cc8dc3df8d53128e9af
-
SHA256
7bf61e112c264b8a6fe1e9e18e7863ff600880c392d226bbfbf353ab788e35bc
-
SHA512
b19a5ddc0cf006dd8319b3e5d4434d654f3328716094cfbbd58141cefdaa79b166d49390a0db021d3aa63dfc11c3609a4f861d84d7d37053423464e5fc0118fe
-
SSDEEP
6144:UZfec9EbXDk6RklKI/UOPSe570Szp3bE2Ernmy+g43GFrQZb++tdsHP4+QfI6UM:UZWtI6RkeOB0vrIerQZb+md4w1UM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-