862f6552fb79c8374e1507182c0bcb78eb8739d7eb6d06fd8626f1d496e7cd57 | Triage

Sharing

General

Target

862f6552fb79c8374e1507182c0bcb78eb8739d7eb6d06fd8626f1d496e7cd57
Size

105KB
Sample

221129-g7g5qadd95
MD5

098057adea2261247414f98c6feb4aa0
SHA1

d1011b0232396837112d644d94e9b2158946048d
SHA256

862f6552fb79c8374e1507182c0bcb78eb8739d7eb6d06fd8626f1d496e7cd57
SHA512

6b6c4b9d8cde37d81fead712785dd260c4b78b7e31bd0e2c117a7aec72a01757f1efac177e53ea8d612c615f57bb026efd0fba926410a443d44c05ffd4cc72b7
SSDEEP

3072:ymeDmBqskJ08cF+jBaNFwlv7WkJdtLmw+0kxCv:y8XEocvNf940kxw

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  862f6552fb79c8374e1507182c0bcb78eb8739d7eb6d06fd8626f1d496e7cd57
- Size
  
  105KB
- MD5
  
  098057adea2261247414f98c6feb4aa0
- SHA1
  
  d1011b0232396837112d644d94e9b2158946048d
- SHA256
  
  862f6552fb79c8374e1507182c0bcb78eb8739d7eb6d06fd8626f1d496e7cd57
- SHA512
  
  6b6c4b9d8cde37d81fead712785dd260c4b78b7e31bd0e2c117a7aec72a01757f1efac177e53ea8d612c615f57bb026efd0fba926410a443d44c05ffd4cc72b7
- SSDEEP
  
  3072:ymeDmBqskJ08cF+jBaNFwlv7WkJdtLmw+0kxCv:y8XEocvNf940kxw
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer