MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 2faea54e17be82c096325fc7a3fc5a64974b22aaa89101e9a8b4cf619733cbfe. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Adware.ExtenBro


Vendor detections: 1


Intelligence 1 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 2faea54e17be82c096325fc7a3fc5a64974b22aaa89101e9a8b4cf619733cbfe
SHA3-384 hash: 05968129aceac22e2135150f1d126312d88ca07a2394d845a08e005d42316c6d9d47828ec6c62e319b808de762b33686
SHA1 hash: 168c9a60e0383aa0b928c60e465df7867bd5e679
MD5 hash: 222cb2098dc137f03abbaf7d31f71814
humanhash: maine-high-maryland-cat
File name:SecuriteInfo.com.Program.Unwanted.1336.29046.11791
Download: download sample
Signature Adware.ExtenBro
Create hunting rule
File size:328'192 bytes
First seen:2020-06-19 14:44:24 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash 1e18e1de4409cbc7da51d063ef75e6be (1 x Adware.ExtenBro)
ssdeep 6144:fA6tDYtIEOzRdq/KHTBR9lCwRLGU+EHZCUau8Lt+B:fzcgHT3p9VZBaJt+B
TLSH 2864AF21D69048F6D1611B76BCD9F0D4A42BBD302B35B81B76FC3E083E7A2B27215296
Reporter SecuriteInfoCom
Tags:Adware.ExtenBro

Code Signing Certificate

Organisation:UTN-USERFirst-Object
Issuer:UTN-USERFirst-Object
Algorithm:sha1WithRSAEncryption
Valid from:Jul 9 18:31:20 1999 GMT
Valid to:Jul 9 18:40:36 2019 GMT
Serial number: 44BE0C8B500024B411D3362DE0B35F1B
Intelligence: 3 malware samples on MalwareBazaar are signed with this code signing certificate
Thumbprint Algorithm:SHA256
Thumbprint: 6FFF78E400A70C11011CD85977C459FB5AF96A3DF0540820D0F4B8607875E58F
Source:This information was brought to you by ReversingLabs A1000 Malware Analysis Platform

Intelligence

File Origin
# of uploads :
1
# of downloads :
128
Origin country :
n/a
Vendor Threat Intelligence
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/9622/
Detection(s):
SecuriteInfo.com.Program.Unwanted.1336.29046.11791.UNOFFICIAL
Create hunting rule

PUA.Win.Adware.Slugin-6803969-0
Create hunting rule

PUA.Win.Adware.Slugin-6840354-0
Create hunting rule

Gathering data
Verdict:
unknown
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/201109-mbtt4z9vda/
Behaviour
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Cape
Cape
https://www.capesandbox.com/analysis/9622/

Comments