f8e192e771107302ef183358d4f8a2a57b826e42d56f7faaab70ac1c32d60423 | Triage

Sharing

General

Target

f8e192e771107302ef183358d4f8a2a57b826e42d56f7faaab70ac1c32d60423
Size

544KB
Sample

221012-v6wtdadgb5
MD5

687b90950f447eb8b6d7f4374dfd1021
SHA1

2dd5ed0b6ff134d080e384182db09183bff31701
SHA256

f8e192e771107302ef183358d4f8a2a57b826e42d56f7faaab70ac1c32d60423
SHA512

011061ad39543e518c4eae22561a7fa47c13ec36df807f2c57a8b555960d799e38284a49af97a441d415c977074246e43c19cba2a36d5720eedfff8a90224e11
SSDEEP

12288:mFu55jE3NdQMXX2tb/PlrDX2TJHOEQrZSKIX49i727cgWjaGJkAeRk:mKE3jHX2VVX2lHOEQNjIX4S27c7Zk1k

Score

8^/10

adware bootkit persistence stealer

Malware Config

Targets

- Target
  
  f8e192e771107302ef183358d4f8a2a57b826e42d56f7faaab70ac1c32d60423
- Size
  
  544KB
- MD5
  
  687b90950f447eb8b6d7f4374dfd1021
- SHA1
  
  2dd5ed0b6ff134d080e384182db09183bff31701
- SHA256
  
  f8e192e771107302ef183358d4f8a2a57b826e42d56f7faaab70ac1c32d60423
- SHA512
  
  011061ad39543e518c4eae22561a7fa47c13ec36df807f2c57a8b555960d799e38284a49af97a441d415c977074246e43c19cba2a36d5720eedfff8a90224e11
- SSDEEP
  
  12288:mFu55jE3NdQMXX2tb/PlrDX2TJHOEQrZSKIX49i727cgWjaGJkAeRk:mKE3jHX2VVX2lHOEQNjIX4S27c7Zk1k
Score

8^/10

adware bootkit persistence stealer
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Bootkit

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarebootkitpersistencestealer

behavioral2

adwarebootkitpersistencestealer