MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 d7f4b62e461376eae0f1665b68d315866b292b7ad2818c48fafb5c3102b76dc0. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Adware.ExtenBro


Vendor detections: 3


Intelligence 3 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: d7f4b62e461376eae0f1665b68d315866b292b7ad2818c48fafb5c3102b76dc0
SHA3-384 hash: 89790704c61dfd1e723e0666d98161426edbc8fcf253317ed19905366c4de6edeb7c20a6b858a56f4aa157b3c192fb38
SHA1 hash: 7008e2fb18efdc3f018d9d2c0e9014fe5f566266
MD5 hash: d373fea40df759e110a09b2e9fe3ecd6
humanhash: king-alpha-mars-lactose
File name:d7f4b62e461376eae0f1665b68d315866b292b7ad2818c48fafb5c3102b76dc0
Download: download sample
Signature Adware.ExtenBro
Create hunting rule
File size:2'067'232 bytes
First seen:2020-06-03 08:43:37 UTC
Last seen:2020-06-03 08:48:22 UTC
File type:Executable exe
MIME type:application/x-dosexec
imphash 561178c1feba20d211c82b55ebe80883 (1 x Adware.ExtenBro)
ssdeep 49152:BDqwhgr0JmDSSi7EcxEmb3FBxJyei6jebA5rOYiZnw:B3CQlS49vebSivZnw
Threatray 3 similar samples on MalwareBazaar
TLSH CEA5334BF9C05531D64A4FF9152AEA25B037BB226C6C39FA3ADC055F8F1B381A516702
Reporter raashidbhatt
Tags:Adware.ExtenBro exe

Intelligence

File Origin
# of uploads :
3
# of downloads :
103
Origin country :
n/a
Vendor Threat Intelligence
Detection(s):
SecuriteInfo.com.Adware.Agent.Inbox.H.UNOFFICIAL
Create hunting rule

SecuriteInfo.com.Program.Unwanted.1662.UNOFFICIAL
Create hunting rule

Gathering data
Threat name:
Win32.PUA.Inboxtoolbar
Create hunting rule
Status:
Malicious
First seen:
2020-06-01 22:42:15 UTC
AV detection:
16 of 31 (51.61%)
Threat level:
  2/5
Detection(s):
Malicious file
Link:
https://check.spamhaus.org/check/?searchterm=272lmlsgcn3ovyhrmznwruyvqzvssk322kayysh27nodcavxnxaa._file
Verdict:
suspicious
Similar samples:
44c7ef261a066790a4ce332afc634fb5f89f3273c0c908ec02ab666088b27757
Adware.ExtenBro
5aa9861dcb5890caaadd311b1eed80e2ae65bd0d46937cc3bdee4757da908fc6
Adware.ExtenBro
b00ffbe33a4398cdfdb136564f24dfd6ff292b11a9adbc4041aa2a532af6edfb
Adware.ExtenBro
Result
Malware family:
n/a
Score:
  8/10
Tags:
n/a
Link:
https://tria.ge/reports/201109-tkdbqn1k7a/
Behaviour
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of WriteProcessMemory
JavaScript code in executable
Loads dropped DLL
Executes dropped EXE
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments