Fireball (968df869-7f60-4420-989f-23dfdbd58668)
Upon execution, Fireball installs a browser hijacker as well as any number of adware programs. Several different sources have linked different indicators of compromise (IOCs) and varied payloads, but a few details remain the same.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Fireball (968df869-7f60-4420-989f-23dfdbd58668) | Tool | Fireball (9ad28356-184c-4f02-89f5-1b70981598c3) | Malpedia | 1 |