General
-
Target
d50c974e7fc2655f1e36458187ca0f94
-
Size
2.3MB
-
Sample
240319-dk7v3sfh66
-
MD5
d50c974e7fc2655f1e36458187ca0f94
-
SHA1
9c47cce8b726cb2be1ff4ee6c990e7c371a0d440
-
SHA256
b14a9b86a7e1de590941778e0b8bbafdfadb35fa4d747ee053e581ce382dfb73
-
SHA512
56f44b414a76b240a5f3925cd86ef54621ca2a16b14096f50b625c40b36f32f59e438c8877f8f344dc3046a459a60f7f9b599bce351cc94bc74439c1c66d540c
-
SSDEEP
24576:UuhaiOA2eZJ8NI8NahxAOu2dA1S404SzVkUetVI5uY:bb8NKeOuxsKQZuY
Malware Config
Targets
-
-
Target
d50c974e7fc2655f1e36458187ca0f94
-
Size
2.3MB
-
MD5
d50c974e7fc2655f1e36458187ca0f94
-
SHA1
9c47cce8b726cb2be1ff4ee6c990e7c371a0d440
-
SHA256
b14a9b86a7e1de590941778e0b8bbafdfadb35fa4d747ee053e581ce382dfb73
-
SHA512
56f44b414a76b240a5f3925cd86ef54621ca2a16b14096f50b625c40b36f32f59e438c8877f8f344dc3046a459a60f7f9b599bce351cc94bc74439c1c66d540c
-
SSDEEP
24576:UuhaiOA2eZJ8NI8NahxAOu2dA1S404SzVkUetVI5uY:bb8NKeOuxsKQZuY
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-