bdcff5f152f495e564685ede67156d4127a72f850e0ee4f7fec5b4b1d7deafec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6578804ec9b22846055459325fb114d
Size

113KB
Sample

240319-rrhreseg9x
MD5

d6578804ec9b22846055459325fb114d
SHA1

ea1d435034a36e5d19749a6e1a0b807daec4a22c
SHA256

bdcff5f152f495e564685ede67156d4127a72f850e0ee4f7fec5b4b1d7deafec
SHA512

a3a5d024f69db47fa9ab9acda859bcbc22745c4d5bcbb0492a43bf3a5b27dfbdc2a7a57358c2ad31ea90f59b04c9e59a7e6421bc32a50796141f52509f314a18
SSDEEP

3072:ymeDmBqskJoR10FslL2Gfpygc8zRe4WnzUhZz:y8vfaL8zRuuZz

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  d6578804ec9b22846055459325fb114d
- Size
  
  113KB
- MD5
  
  d6578804ec9b22846055459325fb114d
- SHA1
  
  ea1d435034a36e5d19749a6e1a0b807daec4a22c
- SHA256
  
  bdcff5f152f495e564685ede67156d4127a72f850e0ee4f7fec5b4b1d7deafec
- SHA512
  
  a3a5d024f69db47fa9ab9acda859bcbc22745c4d5bcbb0492a43bf3a5b27dfbdc2a7a57358c2ad31ea90f59b04c9e59a7e6421bc32a50796141f52509f314a18
- SSDEEP
  
  3072:ymeDmBqskJoR10FslL2Gfpygc8zRe4WnzUhZz:y8vfaL8zRuuZz
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer