2cc62ad558fedf763dd14792c89d38aa700ad9699d43f2999a71cd22d41da557 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1d05cc4585a14454663168a4c4f67b04
Size

162KB
Sample

231230-1bxebaeeb5
MD5

1d05cc4585a14454663168a4c4f67b04
SHA1

da826bab30fb8925cb7e2856761729bf9ce4cefa
SHA256

2cc62ad558fedf763dd14792c89d38aa700ad9699d43f2999a71cd22d41da557
SHA512

d12b6f44a0361a25054b393b24bab4d91f087a889b14176f9a95b83646f98b0a811d8f836e2a2e9819570b66689f44e5552274546ca59ed7717aa8383a825d33
SSDEEP

3072:L6b6cja4g8cX8m+jdMfGzvWp9QTeo8eoxwHJ4LoGyMv5U:aTjaJ8cQjyfGzvWpZxxwHiUkW

Score

6^/10

adware persistence stealer

Malware Config

Targets

- Target
  
  1d05cc4585a14454663168a4c4f67b04
- Size
  
  162KB
- MD5
  
  1d05cc4585a14454663168a4c4f67b04
- SHA1
  
  da826bab30fb8925cb7e2856761729bf9ce4cefa
- SHA256
  
  2cc62ad558fedf763dd14792c89d38aa700ad9699d43f2999a71cd22d41da557
- SHA512
  
  d12b6f44a0361a25054b393b24bab4d91f087a889b14176f9a95b83646f98b0a811d8f836e2a2e9819570b66689f44e5552274546ca59ed7717aa8383a825d33
- SSDEEP
  
  3072:L6b6cja4g8cX8m+jdMfGzvWp9QTeo8eoxwHJ4LoGyMv5U:aTjaJ8cQjyfGzvWpZxxwHiUkW
Score

6^/10

adware persistence stealer
- Adds Run key to start application
  persistence
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Browser Extensions

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarepersistencestealer

behavioral2

adwarepersistencestealer