Overview

overview

8

Static

static

88184a6105...5f.dll

windows7-x64

8

88184a6105...5f.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88184a610590d5fa661cacc0755d82c38f7d59a9a721cee1ca9e22960651015f

  • Size

    252KB

  • Sample

    221129-gx786acf55

  • MD5

    4fe6e2f7398981c41ed38700060f9fae

  • SHA1

    0bf11b9a4a7c9a692b34c6776b4d289c5ec969c1

  • SHA256

    88184a610590d5fa661cacc0755d82c38f7d59a9a721cee1ca9e22960651015f

  • SHA512

    d92c45f4bf241637f59d3931adf15baade2b10e7ee594d59ef9b18f077c586501554baed7b633533cfb93ffebca883958ddf1ab0ec826baeaa1d88b6e51fee40

  • SSDEEP

    6144:LA27bgkNSQvp11A6epPODzVC2kj7gfWzEhz:LAMbpN9v7gpPOD02/fR

Score
8/10
adwarepersistencestealer

Malware Config

Targets

    • Target

      88184a610590d5fa661cacc0755d82c38f7d59a9a721cee1ca9e22960651015f

    • Size

      252KB

    • MD5

      4fe6e2f7398981c41ed38700060f9fae

    • SHA1

      0bf11b9a4a7c9a692b34c6776b4d289c5ec969c1

    • SHA256

      88184a610590d5fa661cacc0755d82c38f7d59a9a721cee1ca9e22960651015f

    • SHA512

      d92c45f4bf241637f59d3931adf15baade2b10e7ee594d59ef9b18f077c586501554baed7b633533cfb93ffebca883958ddf1ab0ec826baeaa1d88b6e51fee40

    • SSDEEP

      6144:LA27bgkNSQvp11A6epPODzVC2kj7gfWzEhz:LAMbpN9v7gpPOD02/fR

    Score
    8/10
    adwarepersistencestealer

    • Adds policy Run key to start application

      persistence

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Browser Extensions

1
T1176

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks