0ee8caf244105dc2acf0e56889294ca1abf269d6eb17bde1387c3c8e5da29897 | Triage

Sharing

General

Target

98417f5e5e5519096433735ed3641e87
Size

128KB
Sample

240213-cz4arscd68
MD5

98417f5e5e5519096433735ed3641e87
SHA1

346da67a59b36b88e95312ba5d2268b84dfc1188
SHA256

0ee8caf244105dc2acf0e56889294ca1abf269d6eb17bde1387c3c8e5da29897
SHA512

c75ed33307f7aee83426aafed751bcf4018a05aecf11a6d88dc49b87446d54963dbae9ebde1115455f7fcd5125af95b45de7377834a33fdec4fb76453f60621b
SSDEEP

3072:EmeDmBqskJVWM3Dw8miyf4wxt1pQxq078V2ys7DbR8pmYCz3fS90VcOT:E8K5TygaHpvi7DiMYY3fS90ea

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  98417f5e5e5519096433735ed3641e87
- Size
  
  128KB
- MD5
  
  98417f5e5e5519096433735ed3641e87
- SHA1
  
  346da67a59b36b88e95312ba5d2268b84dfc1188
- SHA256
  
  0ee8caf244105dc2acf0e56889294ca1abf269d6eb17bde1387c3c8e5da29897
- SHA512
  
  c75ed33307f7aee83426aafed751bcf4018a05aecf11a6d88dc49b87446d54963dbae9ebde1115455f7fcd5125af95b45de7377834a33fdec4fb76453f60621b
- SSDEEP
  
  3072:EmeDmBqskJVWM3Dw8miyf4wxt1pQxq078V2ys7DbR8pmYCz3fS90VcOT:E8K5TygaHpvi7DiMYY3fS90ea
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer