adbdec561d3bcafd097f36c2dece0e8c8015ffd56b329ee389783090a7cf0c31 | Triage

Sharing

General

Target

adbdec561d3bcafd097f36c2dece0e8c8015ffd56b329ee389783090a7cf0c31
Size

125KB
Sample

221128-btgn5shh2z
MD5

2eefa00927255e08b0f0a4b62d64668e
SHA1

701bb331ffdba0688544d992232fcdeb593f3f2d
SHA256

adbdec561d3bcafd097f36c2dece0e8c8015ffd56b329ee389783090a7cf0c31
SHA512

975d34dd1e2876acbe5e12ec3d0ddf19a1bdae0a9415af344c9236b763f1549fbc5dc9b233adc7c8afa9b9634866855f93c1c2f444727ee4ad3bf88c616dab79
SSDEEP

3072:EmeDmBqskJ0h7zfvk416XOj+sYT8jk4aVqk:E8t/hUXO6Tl4aMk

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  adbdec561d3bcafd097f36c2dece0e8c8015ffd56b329ee389783090a7cf0c31
- Size
  
  125KB
- MD5
  
  2eefa00927255e08b0f0a4b62d64668e
- SHA1
  
  701bb331ffdba0688544d992232fcdeb593f3f2d
- SHA256
  
  adbdec561d3bcafd097f36c2dece0e8c8015ffd56b329ee389783090a7cf0c31
- SHA512
  
  975d34dd1e2876acbe5e12ec3d0ddf19a1bdae0a9415af344c9236b763f1549fbc5dc9b233adc7c8afa9b9634866855f93c1c2f444727ee4ad3bf88c616dab79
- SSDEEP
  
  3072:EmeDmBqskJ0h7zfvk416XOj+sYT8jk4aVqk:E8t/hUXO6Tl4aMk
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer