34d6031fa8405293fe209acef4dc6e0e92c2f708dbc9feef1a9d84e1705962ec | Triage

Sharing

General

Target

de736bf66966bd4a64e50ec94afe686e
Size

236KB
Sample

240325-t23kpafg6z
MD5

de736bf66966bd4a64e50ec94afe686e
SHA1

cd56df652c8aef80ce5c5c4ea951019478571bf1
SHA256

34d6031fa8405293fe209acef4dc6e0e92c2f708dbc9feef1a9d84e1705962ec
SHA512

aaf25022ec578f7985c00e056121bc47a87456748dad03e2cb97a536cf21170dba4ce0ce1c8546f87bbd776c6ea854b675ab1fc4b2a4072856b5ef2ab41176be
SSDEEP

3072:ART+V0SFseNgnBRVP05ksNPw6TrsAkZ9oJcJadaPgZAk1NVvtRATk:Ad+VdFse6RVPEkMwMTcMbZAk1NtGk

Score

7^/10

adware persistence stealer

Malware Config

Targets

- Target
  
  de736bf66966bd4a64e50ec94afe686e
- Size
  
  236KB
- MD5
  
  de736bf66966bd4a64e50ec94afe686e
- SHA1
  
  cd56df652c8aef80ce5c5c4ea951019478571bf1
- SHA256
  
  34d6031fa8405293fe209acef4dc6e0e92c2f708dbc9feef1a9d84e1705962ec
- SHA512
  
  aaf25022ec578f7985c00e056121bc47a87456748dad03e2cb97a536cf21170dba4ce0ce1c8546f87bbd776c6ea854b675ab1fc4b2a4072856b5ef2ab41176be
- SSDEEP
  
  3072:ART+V0SFseNgnBRVP05ksNPw6TrsAkZ9oJcJadaPgZAk1NVvtRATk:Ad+VdFse6RVPEkMwMTcMbZAk1NtGk
Score

7^/10

adware persistence stealer
- Registers COM server for autorun
  persistence
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Browser Extensions

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarepersistencestealer

behavioral2

adwarepersistencestealer