Overview

overview

6

Static

static

687899a4ef...da.dll

windows7_x64

6

687899a4ef...da.dll

windows10_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    687899a4ef1d07fbfa4a7b502da484f3a822e6a60554f409fe0d94d7797cd8da

  • Size

    186KB

  • Sample

    210515-hkmcdadr6n

  • MD5

    c5f73cdf15df7fab168a9b0547507a5a

  • SHA1

    5ebe53a539f740d54217898a6acd49a4b2b88769

  • SHA256

    687899a4ef1d07fbfa4a7b502da484f3a822e6a60554f409fe0d94d7797cd8da

  • SHA512

    3f802a6ffc7ddaa6c8ba106dd7c111e7b8ef59a5b10506e1a41a4fa3ee5808d6cf00faf28e6692ed8321d9d0a01f5b45f0e786f6914cc82253f89e6b48f18773

Score
6/10
adwarepersistencestealer

Malware Config

Targets

    • Target

      687899a4ef1d07fbfa4a7b502da484f3a822e6a60554f409fe0d94d7797cd8da

    • Size

      186KB

    • MD5

      c5f73cdf15df7fab168a9b0547507a5a

    • SHA1

      5ebe53a539f740d54217898a6acd49a4b2b88769

    • SHA256

      687899a4ef1d07fbfa4a7b502da484f3a822e6a60554f409fe0d94d7797cd8da

    • SHA512

      3f802a6ffc7ddaa6c8ba106dd7c111e7b8ef59a5b10506e1a41a4fa3ee5808d6cf00faf28e6692ed8321d9d0a01f5b45f0e786f6914cc82253f89e6b48f18773

    Score
    6/10
    adwarepersistencestealer

    • Adds Run key to start application

      persistence

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Browser Extensions

1
T1176

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks