General
-
Target
cab594e0c5d7933c2220f2ca9f4108e9
-
Size
484KB
-
Sample
240315-g7pjssca42
-
MD5
cab594e0c5d7933c2220f2ca9f4108e9
-
SHA1
860c82b9f10e6d382e8ba64bd5d255649329baaf
-
SHA256
42e4d502314af76149da640797ae2ce681531ee49a1580f9c50a822b3a4160f1
-
SHA512
1011f28c61ceff7044649801d6fd8f5bf99bae96033611322265107d9a93f5113b814733172f5b7427cdea2408c5f46974c441967245b0fff15863e1fdea3b88
-
SSDEEP
6144:UZfec9EbXDk6Rk/KdrG1VVE+IwrG1VVE+Iznmy+g4sQF8QmIys7b7MNCu:UZWtI6Rkaunu0lpIys7bA
Malware Config
Targets
-
-
Target
cab594e0c5d7933c2220f2ca9f4108e9
-
Size
484KB
-
MD5
cab594e0c5d7933c2220f2ca9f4108e9
-
SHA1
860c82b9f10e6d382e8ba64bd5d255649329baaf
-
SHA256
42e4d502314af76149da640797ae2ce681531ee49a1580f9c50a822b3a4160f1
-
SHA512
1011f28c61ceff7044649801d6fd8f5bf99bae96033611322265107d9a93f5113b814733172f5b7427cdea2408c5f46974c441967245b0fff15863e1fdea3b88
-
SSDEEP
6144:UZfec9EbXDk6Rk/KdrG1VVE+IwrG1VVE+Iznmy+g4sQF8QmIys7b7MNCu:UZWtI6Rkaunu0lpIys7bA
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-