20d5ac38d790a037494b065b6ed2375570420774233cd58ee66677e3d494ecfc | Triage

Sharing

General

Target

08460e00deb386b0cb43722558ee2fe1
Size

124KB
Sample

231224-vx51pabaf7
MD5

08460e00deb386b0cb43722558ee2fe1
SHA1

bb2e519d1818c724f812c0270e38cc912d33591f
SHA256

20d5ac38d790a037494b065b6ed2375570420774233cd58ee66677e3d494ecfc
SHA512

0161c2fc1fe7ec9f9178e640e82812de21b1d1efe5c6f4a6795aa641af4fc7c5175a821cd2f32de569b82a26da049611f3558b20446ddaf8196265d403010936
SSDEEP

3072:EmeDmBqskJvFKpD3MWXRmnQlbwKBhxmaWdDqEhJtvpAF:E8iwD3pmQRwgxp8DzJthy

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  08460e00deb386b0cb43722558ee2fe1
- Size
  
  124KB
- MD5
  
  08460e00deb386b0cb43722558ee2fe1
- SHA1
  
  bb2e519d1818c724f812c0270e38cc912d33591f
- SHA256
  
  20d5ac38d790a037494b065b6ed2375570420774233cd58ee66677e3d494ecfc
- SHA512
  
  0161c2fc1fe7ec9f9178e640e82812de21b1d1efe5c6f4a6795aa641af4fc7c5175a821cd2f32de569b82a26da049611f3558b20446ddaf8196265d403010936
- SSDEEP
  
  3072:EmeDmBqskJvFKpD3MWXRmnQlbwKBhxmaWdDqEhJtvpAF:E8iwD3pmQRwgxp8DzJthy
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer