General
-
Target
7eb28b5ca1e00ee01fbdd3ba0a2cede1
-
Size
899KB
-
Sample
240129-dfkvrahgfp
-
MD5
7eb28b5ca1e00ee01fbdd3ba0a2cede1
-
SHA1
1a56a658e16cebe990f1ecb8893b582a2184dbd0
-
SHA256
5c37a9ea72925a3552bb4f7a9c15341c4ae229a3e1de5d3bce0fb55dfb650768
-
SHA512
81d93de5f0f1f4c02397824b19f7fab95c002486d59ad60eee77c753bd7376b0509f20689af2c80cb8eabaa91a4119deea539956574bc83fb7d9d6f623014e33
-
SSDEEP
12288:UZWtI6Rk2erQZb+md4w1UsuVyOB0vOB0H:Uuha2erQZb+md4wmFyOWOM
Malware Config
Targets
-
-
Target
7eb28b5ca1e00ee01fbdd3ba0a2cede1
-
Size
899KB
-
MD5
7eb28b5ca1e00ee01fbdd3ba0a2cede1
-
SHA1
1a56a658e16cebe990f1ecb8893b582a2184dbd0
-
SHA256
5c37a9ea72925a3552bb4f7a9c15341c4ae229a3e1de5d3bce0fb55dfb650768
-
SHA512
81d93de5f0f1f4c02397824b19f7fab95c002486d59ad60eee77c753bd7376b0509f20689af2c80cb8eabaa91a4119deea539956574bc83fb7d9d6f623014e33
-
SSDEEP
12288:UZWtI6Rk2erQZb+md4w1UsuVyOB0vOB0H:Uuha2erQZb+md4wmFyOWOM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-