General

  • Target

    c2e39beb8d1ac640a3e8ce5f25bf9e4fbc0827024013ec088686f0b09e10ef0d

  • Size

    173KB

  • Sample

    220427-xdcadadahr

  • MD5

    c907ca0af7fc4886333c2f642b3359c3

  • SHA1

    3a274c028e8ab2b2795e62f60cf71dbb98a5f52d

  • SHA256

    c2e39beb8d1ac640a3e8ce5f25bf9e4fbc0827024013ec088686f0b09e10ef0d

  • SHA512

    c1bcb447f19df4ef04bcb732434ed9f9f5ad9820a7c1acf0b009900b7657f0b76fa1d815ca12b10102e58157930d34c62f7fd7c29035a5c5c231da2f4edb285a

Malware Config

Targets

    • Target

      c2e39beb8d1ac640a3e8ce5f25bf9e4fbc0827024013ec088686f0b09e10ef0d

    • Size

      173KB

    • MD5

      c907ca0af7fc4886333c2f642b3359c3

    • SHA1

      3a274c028e8ab2b2795e62f60cf71dbb98a5f52d

    • SHA256

      c2e39beb8d1ac640a3e8ce5f25bf9e4fbc0827024013ec088686f0b09e10ef0d

    • SHA512

      c1bcb447f19df4ef04bcb732434ed9f9f5ad9820a7c1acf0b009900b7657f0b76fa1d815ca12b10102e58157930d34c62f7fd7c29035a5c5c231da2f4edb285a

    • Adds Run key to start application

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Browser Extensions

1
T1176

Defense Evasion

Modify Registry

3
T1112

Tasks