c6c44e700e1598be12075b5b95e43bc0dd8ee1de715d8ace0092aa8dedee947d | Triage

Sharing

General

Target

c6c44e700e1598be12075b5b95e43bc0dd8ee1de715d8ace0092aa8dedee947d
Size

117KB
Sample

220919-k13pmadfhr
MD5

7b6a3a4d9741b8474966d7c84f688426
SHA1

8fd8ca298eea243aa9d9e9d1efa374382402d376
SHA256

c6c44e700e1598be12075b5b95e43bc0dd8ee1de715d8ace0092aa8dedee947d
SHA512

d8b3078b2ec668a14585f9b3b42619aad01eb8143d128e2bdf2b6a48050e586a26b0318ed6938e162a493633d0d3b83a7d749c8dbe5160af5bff34b6ef62f212
SSDEEP

1536:lRf1o2Ca7qiagSshdS0D6mJmioSC2qAaOKdACYIZYIJp9ufYBGGoX8bxRiff24N0:lpj7EUbD6mJjoOjKCanBYg3ifNSXnJLL

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  c6c44e700e1598be12075b5b95e43bc0dd8ee1de715d8ace0092aa8dedee947d
- Size
  
  117KB
- MD5
  
  7b6a3a4d9741b8474966d7c84f688426
- SHA1
  
  8fd8ca298eea243aa9d9e9d1efa374382402d376
- SHA256
  
  c6c44e700e1598be12075b5b95e43bc0dd8ee1de715d8ace0092aa8dedee947d
- SHA512
  
  d8b3078b2ec668a14585f9b3b42619aad01eb8143d128e2bdf2b6a48050e586a26b0318ed6938e162a493633d0d3b83a7d749c8dbe5160af5bff34b6ef62f212
- SSDEEP
  
  1536:lRf1o2Ca7qiagSshdS0D6mJmioSC2qAaOKdACYIZYIJp9ufYBGGoX8bxRiff24N0:lpj7EUbD6mJjoOjKCanBYg3ifNSXnJLL
Score

7^/10

adware stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2