8af1dc7a1a1e92f2eba55cb5219b66e444610207370f7ec388771b9e8cfeedbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d5a147cec00012564bc694fbe6cae681
Size

128KB
Sample

240319-j4tepaee32
MD5

d5a147cec00012564bc694fbe6cae681
SHA1

c822101a17bf847545c88ff869b59d8c70fc3170
SHA256

8af1dc7a1a1e92f2eba55cb5219b66e444610207370f7ec388771b9e8cfeedbc
SHA512

46b6b6f30ceefd818c06f3ca1ed9b1ea3525bad60902480b1f120a46d37706b51b151a56a6c339c343f98f231c082509dcee1eef4ab55692c5d44b3bdb0d263c
SSDEEP

3072:EmeDmBqskJZy0rY3tgFvb5PEXjjCp8VQ8a97:E8vxovbki98+

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  d5a147cec00012564bc694fbe6cae681
- Size
  
  128KB
- MD5
  
  d5a147cec00012564bc694fbe6cae681
- SHA1
  
  c822101a17bf847545c88ff869b59d8c70fc3170
- SHA256
  
  8af1dc7a1a1e92f2eba55cb5219b66e444610207370f7ec388771b9e8cfeedbc
- SHA512
  
  46b6b6f30ceefd818c06f3ca1ed9b1ea3525bad60902480b1f120a46d37706b51b151a56a6c339c343f98f231c082509dcee1eef4ab55692c5d44b3bdb0d263c
- SSDEEP
  
  3072:EmeDmBqskJZy0rY3tgFvb5PEXjjCp8VQ8a97:E8vxovbki98+
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer