bf678ab4ef9529fc7f31cbd3fd5fb1942b8c722a32fb6a305c11659b022899f3 | Triage

Sharing

General

Target

bf678ab4ef9529fc7f31cbd3fd5fb1942b8c722a32fb6a305c11659b022899f3
Size

406KB
Sample

221201-lqn9xsfb88
MD5

1efa62dd8aadaacc9d7677f7fc592570
SHA1

eaf4e26d38ddccaa377f8300b9357f4890d3908f
SHA256

bf678ab4ef9529fc7f31cbd3fd5fb1942b8c722a32fb6a305c11659b022899f3
SHA512

0fea95e33aa6a8e7c095803471540db12e8dba324c76087ce3878053602dcff0c7c19c3b292f21c2d659cde418beac9e85a5b650396f05e932ca8a8cf2d7efef
SSDEEP

12288:CgtqqpPi1mOgfo1t+JAr+yxKuZri8QOvOvhXL:CqqqpPiYo1EyHCGkXL

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  bf678ab4ef9529fc7f31cbd3fd5fb1942b8c722a32fb6a305c11659b022899f3
- Size
  
  406KB
- MD5
  
  1efa62dd8aadaacc9d7677f7fc592570
- SHA1
  
  eaf4e26d38ddccaa377f8300b9357f4890d3908f
- SHA256
  
  bf678ab4ef9529fc7f31cbd3fd5fb1942b8c722a32fb6a305c11659b022899f3
- SHA512
  
  0fea95e33aa6a8e7c095803471540db12e8dba324c76087ce3878053602dcff0c7c19c3b292f21c2d659cde418beac9e85a5b650396f05e932ca8a8cf2d7efef
- SSDEEP
  
  12288:CgtqqpPi1mOgfo1t+JAr+yxKuZri8QOvOvhXL:CqqqpPiYo1EyHCGkXL
Score

7^/10

adware stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2