86478dde55423ea79373c7717db21ed3f16998b88d4c2f14c029b0e4f05e8a2a | Triage

Sharing

General

Target

8a941b3741b3b84f032df3fa8df05f38.bin
Size

473KB
Sample

240204-b322faeee4
MD5

8a941b3741b3b84f032df3fa8df05f38
SHA1

709f907993134a655d996978a9e800f4168de1c4
SHA256

86478dde55423ea79373c7717db21ed3f16998b88d4c2f14c029b0e4f05e8a2a
SHA512

8fa577f4217816fc86fdbff9a052473a8de43cccaedbb81ccd26b2b187908dcee6416f191a2671b9617b61e40a00f113b3377af5f82366967f4f0c6daf4ec592
SSDEEP

12288:KEyS9OOCHzSCcVflpCLPnLTeeeAlj6o4A:k/HuCcZHCLLTq4f4A

Score

6^/10

adware persistence stealer

Malware Config

Targets

- Target
  
  8a941b3741b3b84f032df3fa8df05f38.bin
- Size
  
  473KB
- MD5
  
  8a941b3741b3b84f032df3fa8df05f38
- SHA1
  
  709f907993134a655d996978a9e800f4168de1c4
- SHA256
  
  86478dde55423ea79373c7717db21ed3f16998b88d4c2f14c029b0e4f05e8a2a
- SHA512
  
  8fa577f4217816fc86fdbff9a052473a8de43cccaedbb81ccd26b2b187908dcee6416f191a2671b9617b61e40a00f113b3377af5f82366967f4f0c6daf4ec592
- SSDEEP
  
  12288:KEyS9OOCHzSCcVflpCLPnLTeeeAlj6o4A:k/HuCcZHCLLTq4f4A
Score

6^/10

adware persistence stealer
- Adds Run key to start application
  persistence
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Browser Extensions

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarepersistencestealer

behavioral2

adwarepersistencestealer