6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97 | Triage

Submit
Reports

Overview

overview

9

Static

static

6038f53fcc...97.exe

windows7-x64

9

6038f53fcc...97.exe

windows10-2004-x64

9

Sharing

General

Target

6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97
Size

1.7MB
Sample

221127-2vlycsad4t
MD5

89201e297ca802d7abbcca8058da1263
SHA1

da607c6ddd1d435586df4ce78ede849a8a020cc7
SHA256

6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97
SHA512

422021c21bf3253a455a0bb5cb8041e5837eba73ec2465775d1f28fd08fd1b5e64fea19bb649cef22cf32a942475835e05a2dc71d7905a75e7f275fe849a66e8
SSDEEP

49152:dIk3o0nifve558Z9TpaPGsDJPS0JLCWn4DXf1dSthVHrjW:p40UW+9Tpf8JPS0JWWSXNdSthVHG

Score

9^/10

adware stealer

Static task

static1

Behavioral task

behavioral1

Sample

6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97
- Size
  
  1.7MB
- MD5
  
  89201e297ca802d7abbcca8058da1263
- SHA1
  
  da607c6ddd1d435586df4ce78ede849a8a020cc7
- SHA256
  
  6038f53fcc92024b8030615e397ab156e14eab572e4fc36a88cfc095e9f87e97
- SHA512
  
  422021c21bf3253a455a0bb5cb8041e5837eba73ec2465775d1f28fd08fd1b5e64fea19bb649cef22cf32a942475835e05a2dc71d7905a75e7f275fe849a66e8
- SSDEEP
  
  49152:dIk3o0nifve558Z9TpaPGsDJPS0JLCWn4DXf1dSthVHrjW:p40UW+9Tpf8JPS0JWWSXNdSthVHG
Score

9^/10

adware stealer
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy