3161a806fde2267e5b8d752e1fc9080fde9c245eb25a80032c0ca9d7601d73a6 | Triage

Sharing

General

Target

3161a806fde2267e5b8d752e1fc9080fde9c245eb25a80032c0ca9d7601d73a6
Size

6KB
Sample

220427-xf75tshbd6
MD5

4687585f511d6b98d97e558acad3c78c
SHA1

321752e18b449df2a8720dad68bfc718520c4574
SHA256

3161a806fde2267e5b8d752e1fc9080fde9c245eb25a80032c0ca9d7601d73a6
SHA512

e4f08ae49a027508714934907872aa3e1c3d32effebe487495bfb17e0ca0df5775baeffeb8e2b4362830ea4bce1c62c78ef8221b56a34e4e0a086baf7d12be6b

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  3161a806fde2267e5b8d752e1fc9080fde9c245eb25a80032c0ca9d7601d73a6
- Size
  
  6KB
- MD5
  
  4687585f511d6b98d97e558acad3c78c
- SHA1
  
  321752e18b449df2a8720dad68bfc718520c4574
- SHA256
  
  3161a806fde2267e5b8d752e1fc9080fde9c245eb25a80032c0ca9d7601d73a6
- SHA512
  
  e4f08ae49a027508714934907872aa3e1c3d32effebe487495bfb17e0ca0df5775baeffeb8e2b4362830ea4bce1c62c78ef8221b56a34e4e0a086baf7d12be6b
Score

7^/10

adware stealer
- Deletes itself
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2