General
-
Target
cc61586c65d71d5042b7b564a096990b
-
Size
891KB
-
Sample
240315-zg39dach48
-
MD5
cc61586c65d71d5042b7b564a096990b
-
SHA1
3cec2fa6728ee196c8531f0d66dea6e997ec3959
-
SHA256
797ddc87cbebc7f102c19d75950d482bfef1763d2d9514a56afb0e308d49e295
-
SHA512
9774493e287de5eaf53eb37214696c1c66c0860cfac771e064c87e57fabb0664202f4dbb7ce1a01c9aa6c0e8052037b8ef18fef0e28ed8d203849a8fad7f4825
-
SSDEEP
6144:UZfec9EbXDk6Rk8KgE2EJuHOcE2EJuHOcE2EJuHOcE2EvBZ6rG1VVE+IA:UZWtI6RkZwOzwOzwOzvBZuut
Malware Config
Targets
-
-
Target
cc61586c65d71d5042b7b564a096990b
-
Size
891KB
-
MD5
cc61586c65d71d5042b7b564a096990b
-
SHA1
3cec2fa6728ee196c8531f0d66dea6e997ec3959
-
SHA256
797ddc87cbebc7f102c19d75950d482bfef1763d2d9514a56afb0e308d49e295
-
SHA512
9774493e287de5eaf53eb37214696c1c66c0860cfac771e064c87e57fabb0664202f4dbb7ce1a01c9aa6c0e8052037b8ef18fef0e28ed8d203849a8fad7f4825
-
SSDEEP
6144:UZfec9EbXDk6Rk8KgE2EJuHOcE2EJuHOcE2EJuHOcE2EvBZ6rG1VVE+IA:UZWtI6RkZwOzwOzwOzvBZuut
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-