MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 37c762da99bb9a46d6d6dd217e7402b110fa0b0f6eda2796f74102b21bf281b2. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Adware.ExtenBro


Vendor detections: 2


Intelligence 2 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 37c762da99bb9a46d6d6dd217e7402b110fa0b0f6eda2796f74102b21bf281b2
SHA3-384 hash: 11d59754cdf2ec25a25d5df28cd41e7798400279435e20c8094f6ab506aa8546a8c6067b857d2b93706424171ede5180
SHA1 hash: 2a92d1aa697d4ffc0f496e56964975705b24137c
MD5 hash: 6ada1f822e78d42bbcde15446e32b1fb
humanhash: queen-finch-venus-tennis
File name:SecuriteInfo.com.Program.Unwanted.1336.28212.21300
Download: download sample
Signature Adware.ExtenBro
Create hunting rule
File size:394'752 bytes
First seen:2020-06-19 14:45:09 UTC
Last seen:Never
File type:Executable exe
MIME type:application/x-dosexec
imphash f23c1176075bcd11d3b420afe175539b (1 x Adware.ExtenBro)
ssdeep 6144:/hIrYIsYsvpvW5899/y3RQSjm3PZhaSysDaLXUU3h:/mYI4BO1BQn/pysvsh
TLSH F184181AE383CC34E563EBF29AE4A39CA9A7BF501A32474A25CC37096B3B54155153E3
Reporter SecuriteInfoCom
Tags:Adware.ExtenBro

Code Signing Certificate

Organisation:UTN-USERFirst-Object
Issuer:UTN-USERFirst-Object
Algorithm:sha1WithRSAEncryption
Valid from:Jul 9 18:31:20 1999 GMT
Valid to:Jul 9 18:40:36 2019 GMT
Serial number: 44BE0C8B500024B411D3362DE0B35F1B
Intelligence: 3 malware samples on MalwareBazaar are signed with this code signing certificate
Thumbprint Algorithm:SHA256
Thumbprint: 6FFF78E400A70C11011CD85977C459FB5AF96A3DF0540820D0F4B8607875E58F
Source:This information was brought to you by ReversingLabs A1000 Malware Analysis Platform

Intelligence

File Origin
# of uploads :
1
# of downloads :
136
Origin country :
n/a
Vendor Threat Intelligence
Detection:
n/a
Link:
https://www.capesandbox.com/analysis/9651/
Detection(s):
SecuriteInfo.com.Program.Unwanted.1336.28212.21300.UNOFFICIAL
Create hunting rule

PUA.Win.Adware.Slugin-6803969-0
Create hunting rule

PUA.Win.Adware.Slugin-6840354-0
Create hunting rule

Gathering data
Detection(s):
Malicious file
Link:
https://check.spamhaus.org/check/?searchterm=g7dwfwuzxonenvww3uqx45acweipucypn3ncpfxxiebleg7sqgza._file
Verdict:
unknown
Result
Malware family:
n/a
Score:
  1/10
Tags:
n/a
Link:
https://tria.ge/reports/201109-2vlnlrrpe6/
Behaviour
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Please note that we are no longer able to provide a coverage score for Virus Total.

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Cape
Cape
https://www.capesandbox.com/analysis/9651/

Comments