General
-
Target
dfb5702e584221c09256d47e0d138e3a
-
Size
914KB
-
Sample
240326-v1eynsfd89
-
MD5
dfb5702e584221c09256d47e0d138e3a
-
SHA1
972748adfa282c6776f31bc63d9432cbdd3ab55e
-
SHA256
0f541899576d74e911697f5811634f716e8e458321c5710fa5de21e8b1b4e0c3
-
SHA512
518575988c0a255dd65caf9381524b29b28ec5d996ca3b343070f0c8a717f95524bcc4eb0315a860050a0f29836b1b2cb1999b3cb563a56c5a2ba5c5f7ae5d76
-
SSDEEP
24576:Uuha/eZJ8NI8DerQZb+md4wmZ2eZJ8NI8r:bt8DerQZbd2V8r
Malware Config
Targets
-
-
Target
dfb5702e584221c09256d47e0d138e3a
-
Size
914KB
-
MD5
dfb5702e584221c09256d47e0d138e3a
-
SHA1
972748adfa282c6776f31bc63d9432cbdd3ab55e
-
SHA256
0f541899576d74e911697f5811634f716e8e458321c5710fa5de21e8b1b4e0c3
-
SHA512
518575988c0a255dd65caf9381524b29b28ec5d996ca3b343070f0c8a717f95524bcc4eb0315a860050a0f29836b1b2cb1999b3cb563a56c5a2ba5c5f7ae5d76
-
SSDEEP
24576:Uuha/eZJ8NI8DerQZb+md4wmZ2eZJ8NI8r:bt8DerQZbd2V8r
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-