94d22446e5bdd8dbaf9aecd0b75e2bbdc67548665d95f6a88719079562e02a37 | Triage

Sharing

General

Target

94d22446e5bdd8dbaf9aecd0b75e2bbdc67548665d95f6a88719079562e02a37
Size

124KB
Sample

221129-fsd9vaca6y
MD5

c7d5896f9c2bd1bbe4f2f81a90ff62e4
SHA1

efc67eddddf368150c88df1805156627b5506661
SHA256

94d22446e5bdd8dbaf9aecd0b75e2bbdc67548665d95f6a88719079562e02a37
SHA512

06441eff0dbf760efe0ea16bc1aca00bf287bb04122353e971439e726312e87454b1a104830b2f576ee617d372c5ef5da12c0cb31992e9b1f3ea992826afec7f
SSDEEP

3072:EmeDmBqskJKPXxh+ACrhLIITC3PIAGd4zO6AMQp:E89/x1uEv3PIV5J

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  94d22446e5bdd8dbaf9aecd0b75e2bbdc67548665d95f6a88719079562e02a37
- Size
  
  124KB
- MD5
  
  c7d5896f9c2bd1bbe4f2f81a90ff62e4
- SHA1
  
  efc67eddddf368150c88df1805156627b5506661
- SHA256
  
  94d22446e5bdd8dbaf9aecd0b75e2bbdc67548665d95f6a88719079562e02a37
- SHA512
  
  06441eff0dbf760efe0ea16bc1aca00bf287bb04122353e971439e726312e87454b1a104830b2f576ee617d372c5ef5da12c0cb31992e9b1f3ea992826afec7f
- SSDEEP
  
  3072:EmeDmBqskJKPXxh+ACrhLIITC3PIAGd4zO6AMQp:E89/x1uEv3PIV5J
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer