fc0393b26db1caf0ce931e4ca583279e31dd2be59e9cabacbf5e3199482d4aef | Triage

Sharing

General

Target

fc0393b26db1caf0ce931e4ca583279e31dd2be59e9cabacbf5e3199482d4aef
Size

124KB
Sample

221126-2q17gsba45
MD5

2c9b4a1178d627c01c0e970bf43137ca
SHA1

eb15e97e422b6dc21ad073f276954d8b23754b0c
SHA256

fc0393b26db1caf0ce931e4ca583279e31dd2be59e9cabacbf5e3199482d4aef
SHA512

167c778baf8db718e9c7228b6b271179d5eb7b957c5dd4616bd478eddcbd9f81dbbfe2aeb1c9d3b8fad6ffa657fd1c724151f80ea81e2356357bb91b21b70a91
SSDEEP

3072:EmeDmBqskJVYa+enStZRXM2VvvFQqNwcSh41p7jYyRKEeyy8Av:E8xa2t7XMqvWK36mP4Pv

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  fc0393b26db1caf0ce931e4ca583279e31dd2be59e9cabacbf5e3199482d4aef
- Size
  
  124KB
- MD5
  
  2c9b4a1178d627c01c0e970bf43137ca
- SHA1
  
  eb15e97e422b6dc21ad073f276954d8b23754b0c
- SHA256
  
  fc0393b26db1caf0ce931e4ca583279e31dd2be59e9cabacbf5e3199482d4aef
- SHA512
  
  167c778baf8db718e9c7228b6b271179d5eb7b957c5dd4616bd478eddcbd9f81dbbfe2aeb1c9d3b8fad6ffa657fd1c724151f80ea81e2356357bb91b21b70a91
- SSDEEP
  
  3072:EmeDmBqskJVYa+enStZRXM2VvvFQqNwcSh41p7jYyRKEeyy8Av:E8xa2t7XMqvWK36mP4Pv
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer