0312f2bfbdeaf9061f4ba0443d87c2fce68846fcbc2ffaca194ddc79fbaed895 | Triage

Sharing

General

Target

0312f2bfbdeaf9061f4ba0443d87c2fce68846fcbc2ffaca194ddc79fbaed895
Size

5.4MB
Sample

220528-b65lqscdg3
MD5

f3fa95da5c40de082f3fe90f65cc8ca0
SHA1

554adccf1258d090eeaa5ce1094ba83246f09a50
SHA256

0312f2bfbdeaf9061f4ba0443d87c2fce68846fcbc2ffaca194ddc79fbaed895
SHA512

165776dd77e76bcc878b9b4c86aefb3ca4221b1c606226fe6341efe4a1ec22189d4e3df7298966bdae8ddd166af933b29305186ea7ad763a365f0b0da7e78218

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  0312f2bfbdeaf9061f4ba0443d87c2fce68846fcbc2ffaca194ddc79fbaed895
- Size
  
  5.4MB
- MD5
  
  f3fa95da5c40de082f3fe90f65cc8ca0
- SHA1
  
  554adccf1258d090eeaa5ce1094ba83246f09a50
- SHA256
  
  0312f2bfbdeaf9061f4ba0443d87c2fce68846fcbc2ffaca194ddc79fbaed895
- SHA512
  
  165776dd77e76bcc878b9b4c86aefb3ca4221b1c606226fe6341efe4a1ec22189d4e3df7298966bdae8ddd166af933b29305186ea7ad763a365f0b0da7e78218
Score

7^/10

adware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2