General
-
Target
78ced06044e97c947fdc3e38efc7a82f
-
Size
2.6MB
-
Sample
240127-aw7gxahef2
-
MD5
78ced06044e97c947fdc3e38efc7a82f
-
SHA1
94858b87c382de7e51a7915096db5a479ca712af
-
SHA256
c21ac13c6448abb6421a457167be7b3ae81060bf6ed7dbfa0e8cd8cc8fdc4aad
-
SHA512
2325c80c4aa0d0a936c865e5ae7f3b4c11a9057e06e7ff54b369828e6cbb588afd44909696bb884091c5887ed2df575add7208bde20c52ec648983e29744497d
-
SSDEEP
49152:bV8ierQZbd2i8ierQZbd2i8ierQZbd2i8ierQZbd21G:irQZCrQZCrQZCrQZf
Malware Config
Targets
-
-
Target
78ced06044e97c947fdc3e38efc7a82f
-
Size
2.6MB
-
MD5
78ced06044e97c947fdc3e38efc7a82f
-
SHA1
94858b87c382de7e51a7915096db5a479ca712af
-
SHA256
c21ac13c6448abb6421a457167be7b3ae81060bf6ed7dbfa0e8cd8cc8fdc4aad
-
SHA512
2325c80c4aa0d0a936c865e5ae7f3b4c11a9057e06e7ff54b369828e6cbb588afd44909696bb884091c5887ed2df575add7208bde20c52ec648983e29744497d
-
SSDEEP
49152:bV8ierQZbd2i8ierQZbd2i8ierQZbd2i8ierQZbd21G:irQZCrQZCrQZCrQZf
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-