2eeb0679d6f277074cd115ea462c110c56c68134027330097f3b5c5a3237a959 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

8fa3d0be26...8e.exe

windows7-x64

7

8fa3d0be26...8e.exe

windows10-2004-x64

7

Sharing

General

Target

8fa3d0be26fb0078bea9668053a2278e
Size

1008KB
Sample

240204-t4g2rsgdfk
MD5

8fa3d0be26fb0078bea9668053a2278e
SHA1

9f7a61325107bff5f2ac2dc5e9086ec618d970bf
SHA256

2eeb0679d6f277074cd115ea462c110c56c68134027330097f3b5c5a3237a959
SHA512

51ce166d7b00dfd03e8a6735ea9489f6efc79f397e109e91ff980fa49bc864cf41841aaf1882d938ad5f52841ab06376097efe5e1545d83f0339776ade93ce03
SSDEEP

12288:sc4+Lnk67JtN5M9UeGFpNFQfQ+1XNyDTzA8GrSHEU3cRuwjQKd9NIXRHQMDhbnxF:pdDxofGYfQ+9EnBGrSkVu102RHQkhbn

Score

7^/10

adware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8fa3d0be26fb0078bea9668053a2278e.exe

Resource

win7-20231215-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

8fa3d0be26fb0078bea9668053a2278e.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  8fa3d0be26fb0078bea9668053a2278e
- Size
  
  1008KB
- MD5
  
  8fa3d0be26fb0078bea9668053a2278e
- SHA1
  
  9f7a61325107bff5f2ac2dc5e9086ec618d970bf
- SHA256
  
  2eeb0679d6f277074cd115ea462c110c56c68134027330097f3b5c5a3237a959
- SHA512
  
  51ce166d7b00dfd03e8a6735ea9489f6efc79f397e109e91ff980fa49bc864cf41841aaf1882d938ad5f52841ab06376097efe5e1545d83f0339776ade93ce03
- SSDEEP
  
  12288:sc4+Lnk67JtN5M9UeGFpNFQfQ+1XNyDTzA8GrSHEU3cRuwjQKd9NIXRHQMDhbnxF:pdDxofGYfQ+9EnBGrSkVu102RHQkhbn
Score

7^/10

adware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy