General
-
Target
8c2180161e3ca7688820d49fcff7ce90
-
Size
2.6MB
-
Sample
240203-mtfbvshffp
-
MD5
8c2180161e3ca7688820d49fcff7ce90
-
SHA1
8a312543eee9c7dd16617ad19663764a09022bd3
-
SHA256
214d3ee98df9122dae8620532ff3056f0608d0861af0897a6953bdc411bd8313
-
SHA512
c9f981622aeff26167a141a779683c1a87ef3532222ef90fef111a0f361406e2f15efb4b86121240d7b9eb745885ab35557ea6419081e8d328efc442bf1928f1
-
SSDEEP
24576:UuhaCOMeZJ8NI8ZOMeZJ8NI8ZOMeZJ8NI8ZOMeZJ8NI8ZOMeZJ8NI8CerQZb+mdp:bQ8W8W8W8W8CerQZbd24
Malware Config
Targets
-
-
Target
8c2180161e3ca7688820d49fcff7ce90
-
Size
2.6MB
-
MD5
8c2180161e3ca7688820d49fcff7ce90
-
SHA1
8a312543eee9c7dd16617ad19663764a09022bd3
-
SHA256
214d3ee98df9122dae8620532ff3056f0608d0861af0897a6953bdc411bd8313
-
SHA512
c9f981622aeff26167a141a779683c1a87ef3532222ef90fef111a0f361406e2f15efb4b86121240d7b9eb745885ab35557ea6419081e8d328efc442bf1928f1
-
SSDEEP
24576:UuhaCOMeZJ8NI8ZOMeZJ8NI8ZOMeZJ8NI8ZOMeZJ8NI8ZOMeZJ8NI8CerQZb+mdp:bQ8W8W8W8W8CerQZbd24
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-