General

  • Target

    baf408b0_ugC01j05sJ

  • Size

    1.4MB

  • Sample

    210814-f3v3snh3qe

  • MD5

    baf408b09e38e1143e2a6e7d119fce05

  • SHA1

    a4befe461298887489e30d0f6e29666d1702ec0f

  • SHA256

    3d87c331c90832915ab96e2b01acd28f890a6a5d982d3b8a484e0f71adc6b083

  • SHA512

    60617284455c5ad6d0c3accd17c6c153831a96edebaeb77ed88fc84e784a79b201bc2ebc7bfff9b0c7843333e5c10c0010b826e812c92476ed77a17a0a13e6fd

Malware Config

Targets

    • Target

      baf408b0_ugC01j05sJ

    • Size

      1.4MB

    • MD5

      baf408b09e38e1143e2a6e7d119fce05

    • SHA1

      a4befe461298887489e30d0f6e29666d1702ec0f

    • SHA256

      3d87c331c90832915ab96e2b01acd28f890a6a5d982d3b8a484e0f71adc6b083

    • SHA512

      60617284455c5ad6d0c3accd17c6c153831a96edebaeb77ed88fc84e784a79b201bc2ebc7bfff9b0c7843333e5c10c0010b826e812c92476ed77a17a0a13e6fd

    • Registers COM server for autorun

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Browser Extensions

1
T1176

Defense Evasion

Modify Registry

2
T1112

Tasks