826a60c514c67d34d542bd3be97cb44e5224bf6b4daf958b8140e8fefd25e551 | Triage

Sharing

General

Target

826a60c514c67d34d542bd3be97cb44e5224bf6b4daf958b8140e8fefd25e551
Size

125KB
Sample

221128-edpatsgf8s
MD5

b31a19b6fe5f483d0cf4c6dc888ff8ce
SHA1

01166420f10862006b2f91ce7b3bd456788c40a7
SHA256

826a60c514c67d34d542bd3be97cb44e5224bf6b4daf958b8140e8fefd25e551
SHA512

07457f2b24c313f08bccb01716bd4b86a70eec94c1df5f034aa7b511eccf0cddaecf42af15e94db91271a8a51309e9919caec12302ddd6b8e4f5c65d2022d689
SSDEEP

3072:EmeDmBqskJk743jvF4tbQOYQJm4eKbF6YJGolo:E8R8T8MK8YJGolo

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  826a60c514c67d34d542bd3be97cb44e5224bf6b4daf958b8140e8fefd25e551
- Size
  
  125KB
- MD5
  
  b31a19b6fe5f483d0cf4c6dc888ff8ce
- SHA1
  
  01166420f10862006b2f91ce7b3bd456788c40a7
- SHA256
  
  826a60c514c67d34d542bd3be97cb44e5224bf6b4daf958b8140e8fefd25e551
- SHA512
  
  07457f2b24c313f08bccb01716bd4b86a70eec94c1df5f034aa7b511eccf0cddaecf42af15e94db91271a8a51309e9919caec12302ddd6b8e4f5c65d2022d689
- SSDEEP
  
  3072:EmeDmBqskJk743jvF4tbQOYQJm4eKbF6YJGolo:E8R8T8MK8YJGolo
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer