8b11b495598ce685b5cdee48839bb6737a90d819819e434af166b905bf0085b5 | Triage

Sharing

General

Target

8b11b495598ce685b5cdee48839bb6737a90d819819e434af166b905bf0085b5
Size

122KB
Sample

221129-gj7qgabd54
MD5

cfd22ac046396078452079aa17ab7be7
SHA1

d4749cde32bd7317862dba79c2740fc5d7b0fe11
SHA256

8b11b495598ce685b5cdee48839bb6737a90d819819e434af166b905bf0085b5
SHA512

661f74a444a521ce1a18866c8ef103c15de55aa03de3d979ad58c43f2145bc4eac7fc1a25aa3801d36d9b61ef39a4216b80bf1914deba3d829cd1977f25c3ce3
SSDEEP

3072:EmeDmBqskJXvmZzbuxUXW6iHTNnE/ympni42YJPx:E8ERt6ihnE/7F

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  8b11b495598ce685b5cdee48839bb6737a90d819819e434af166b905bf0085b5
- Size
  
  122KB
- MD5
  
  cfd22ac046396078452079aa17ab7be7
- SHA1
  
  d4749cde32bd7317862dba79c2740fc5d7b0fe11
- SHA256
  
  8b11b495598ce685b5cdee48839bb6737a90d819819e434af166b905bf0085b5
- SHA512
  
  661f74a444a521ce1a18866c8ef103c15de55aa03de3d979ad58c43f2145bc4eac7fc1a25aa3801d36d9b61ef39a4216b80bf1914deba3d829cd1977f25c3ce3
- SSDEEP
  
  3072:EmeDmBqskJXvmZzbuxUXW6iHTNnE/ympni42YJPx:E8ERt6ihnE/7F
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer