c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced | Triage

Submit
Reports

Overview

overview

9

Static

static

9

c2f23d1a22...ed.dll

windows7-x64

8

c2f23d1a22...ed.dll

windows10-2004-x64

8

Sharing

General

Target

c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced
Size

128KB
Sample

221205-hhh66aeb96
MD5

2f259e090a3161d1c21b38be732c3885
SHA1

61a9f28f5b99a248d8a74e7a47f3868eb85fda04
SHA256

c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced
SHA512

e8d0d51ba787ec700aa90922e157adbe62c0a6f4ed08eaff934d3f0fc2a15bcd6008ada52137712d1299d7b78793746b1ac7d30b7b0b2c7ed0e32302dad52b08
SSDEEP

3072:eNJH83yeup+FbGfcRcYUccsgwyFGma+lskHlf5:elr+RcYUagwyFpa+l5h

Score

9^/10

adware persistence stealer upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced.dll

Resource

win7-20220812-en

adware persistence stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced.dll

Resource

win10v2004-20220901-en

adware persistence stealer upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced
- Size
  
  128KB
- MD5
  
  2f259e090a3161d1c21b38be732c3885
- SHA1
  
  61a9f28f5b99a248d8a74e7a47f3868eb85fda04
- SHA256
  
  c2f23d1a225350f7ca130772331f8eabc054f727a480fff92507e3ce88853ced
- SHA512
  
  e8d0d51ba787ec700aa90922e157adbe62c0a6f4ed08eaff934d3f0fc2a15bcd6008ada52137712d1299d7b78793746b1ac7d30b7b0b2c7ed0e32302dad52b08
- SSDEEP
  
  3072:eNJH83yeup+FbGfcRcYUccsgwyFGma+lskHlf5:elr+RcYUagwyFpa+l5h
Score

8^/10

adware persistence stealer upx
- Modifies Shared Task Scheduler registry keys
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Browser Extensions

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarepersistencestealerupx

behavioral2

adwarepersistencestealerupx

© 2018-2025

Terms | Privacy