00d2a69004056952d34876f65143d6916aebb4ce1b3c7763043ec8253da56af7 | Triage

Sharing

General

Target

00d2a69004056952d34876f65143d6916aebb4ce1b3c7763043ec8253da56af7
Size

124KB
Sample

220524-n5m2hscgbj
MD5

7b6f541a123fc44cd2d4da3fe0d4f2a2
SHA1

3a403ef5436460843dcc739decfd8f6e7a080214
SHA256

00d2a69004056952d34876f65143d6916aebb4ce1b3c7763043ec8253da56af7
SHA512

c31aa7fd32ed0fafa318273795c872c3ffd2e17dde2562608f59bc97759044fbf99911ec0e2c7a412f5e6a5004a5400e1076bf84dd2857638220d4f4f905e9ce

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  00d2a69004056952d34876f65143d6916aebb4ce1b3c7763043ec8253da56af7
- Size
  
  124KB
- MD5
  
  7b6f541a123fc44cd2d4da3fe0d4f2a2
- SHA1
  
  3a403ef5436460843dcc739decfd8f6e7a080214
- SHA256
  
  00d2a69004056952d34876f65143d6916aebb4ce1b3c7763043ec8253da56af7
- SHA512
  
  c31aa7fd32ed0fafa318273795c872c3ffd2e17dde2562608f59bc97759044fbf99911ec0e2c7a412f5e6a5004a5400e1076bf84dd2857638220d4f4f905e9ce
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer