General

  • Target

    2c77cb1e4d50d7afc8704eb6d169c724ce12626830e01e2b0994eda11ae816a1

  • Size

    452KB

  • Sample

    201108-65p7n499qs

  • MD5

    0bd9a36af892fb6a93e40324add04887

  • SHA1

    b825abaf80cff448e1b038b09a3472d3134ff6ba

  • SHA256

    2c77cb1e4d50d7afc8704eb6d169c724ce12626830e01e2b0994eda11ae816a1

  • SHA512

    07b8feb8c044af7d5589d40c128c339506758b7a3d2c5a086748b336c7ed268b10414318540ded08861c97e5c6a123965bc7f15d7245b3f675e0a2660ed0de3c

Malware Config

Targets

    • Target

      2c77cb1e4d50d7afc8704eb6d169c724ce12626830e01e2b0994eda11ae816a1

    • Size

      452KB

    • MD5

      0bd9a36af892fb6a93e40324add04887

    • SHA1

      b825abaf80cff448e1b038b09a3472d3134ff6ba

    • SHA256

      2c77cb1e4d50d7afc8704eb6d169c724ce12626830e01e2b0994eda11ae816a1

    • SHA512

      07b8feb8c044af7d5589d40c128c339506758b7a3d2c5a086748b336c7ed268b10414318540ded08861c97e5c6a123965bc7f15d7245b3f675e0a2660ed0de3c

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

    • Modifies service

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Browser Extensions

1
T1176

Modify Existing Service

1
T1031

Defense Evasion

Modify Registry

3
T1112

Tasks