620e7a30771c4374de11a50f139ad60204ae1845c923db8bd8980025343f5f5e | Triage

Sharing

General

Target

620e7a30771c4374de11a50f139ad60204ae1845c923db8bd8980025343f5f5e
Size

124KB
Sample

221123-hmyseahf5s
MD5

abd835a2045177eacb5b716ff9cd9fad
SHA1

16d3bc8676a5160d5cd7e44f1fba8240e6dfa782
SHA256

620e7a30771c4374de11a50f139ad60204ae1845c923db8bd8980025343f5f5e
SHA512

b3636c65511f4065e561901a0b3f19b5b3896c2559ea47ee4c461615e6f8f41722ea6ae295aba0aa5fb6d328047121e3035316b6e5728295f12081c9d4576d69
SSDEEP

3072:EmeDmBqskJT2DgzuLj17h1m5yHkspSqQ2fy75RqEnxBiEx9:E8xDgzuLjVOyEESq+RVbL9

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  620e7a30771c4374de11a50f139ad60204ae1845c923db8bd8980025343f5f5e
- Size
  
  124KB
- MD5
  
  abd835a2045177eacb5b716ff9cd9fad
- SHA1
  
  16d3bc8676a5160d5cd7e44f1fba8240e6dfa782
- SHA256
  
  620e7a30771c4374de11a50f139ad60204ae1845c923db8bd8980025343f5f5e
- SHA512
  
  b3636c65511f4065e561901a0b3f19b5b3896c2559ea47ee4c461615e6f8f41722ea6ae295aba0aa5fb6d328047121e3035316b6e5728295f12081c9d4576d69
- SSDEEP
  
  3072:EmeDmBqskJT2DgzuLj17h1m5yHkspSqQ2fy75RqEnxBiEx9:E8xDgzuLjVOyEESq+RVbL9
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer