61c3c343cc17a8b5b3411025d6213470ccd57642e945501fe79e5847b4705fca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61c3c343cc17a8b5b3411025d6213470ccd57642e945501fe79e5847b4705fca
Size

397KB
Sample

221201-e3gx2shd3v
MD5

2ad635abbc48b88e10113009b3fea850
SHA1

af885aeecdf763354b4b99cdfd7b18e3da7a8e95
SHA256

61c3c343cc17a8b5b3411025d6213470ccd57642e945501fe79e5847b4705fca
SHA512

aa77237711946376163dbe736ed07c57e236ab7d692568f8ef8cb9d46d248166a80ff85f0a45ce48490bbfb6bce13dee7ebec0fbc5a09df6a4be24bad109e45c
SSDEEP

6144:lsm1HAG0gvqWKHShzoW/Tg9Wi3fSzBNgMXbvv+3rlUXxWydD9/3ws40Q6L:Rgtqq6oki6zBNR6UX9FY03L

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  61c3c343cc17a8b5b3411025d6213470ccd57642e945501fe79e5847b4705fca
- Size
  
  397KB
- MD5
  
  2ad635abbc48b88e10113009b3fea850
- SHA1
  
  af885aeecdf763354b4b99cdfd7b18e3da7a8e95
- SHA256
  
  61c3c343cc17a8b5b3411025d6213470ccd57642e945501fe79e5847b4705fca
- SHA512
  
  aa77237711946376163dbe736ed07c57e236ab7d692568f8ef8cb9d46d248166a80ff85f0a45ce48490bbfb6bce13dee7ebec0fbc5a09df6a4be24bad109e45c
- SSDEEP
  
  6144:lsm1HAG0gvqWKHShzoW/Tg9Wi3fSzBNgMXbvv+3rlUXxWydD9/3ws40Q6L:Rgtqq6oki6zBNR6UX9FY03L
Score

7^/10

adware stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2