3a184ed46b10e27515f8f8726a91886296f7ab1e9c05552b1189d828f15ccb3f | Triage

Resubmissions

07/07/2022, 09:57

220707-lyy44acaak 10

08/07/2020, 02:41

200708-8j488nphen 7

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Trojan.GenericKD.34132730.25936.7257
Size

88KB
Sample

220707-lyy44acaak
MD5

568042d040ed7fbbb802d847ef614a4d
SHA1

6b18e8df396a665808ef362354366befc4ed7aeb
SHA256

3a184ed46b10e27515f8f8726a91886296f7ab1e9c05552b1189d828f15ccb3f
SHA512

ddb683924c2736bf76533ed9e60a64cc744b0f194486292d10494665cc88ce165b420c9a2d3d6e507ce0f011fa674a1d22197bfd2f5a420ed069b02477192f6c

Score

10^/10

suricata

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.GenericKD.34132730.25936.7257
- Size
  
  88KB
- MD5
  
  568042d040ed7fbbb802d847ef614a4d
- SHA1
  
  6b18e8df396a665808ef362354366befc4ed7aeb
- SHA256
  
  3a184ed46b10e27515f8f8726a91886296f7ab1e9c05552b1189d828f15ccb3f
- SHA512
  
  ddb683924c2736bf76533ed9e60a64cc744b0f194486292d10494665cc88ce165b420c9a2d3d6e507ce0f011fa674a1d22197bfd2f5a420ed069b02477192f6c
Score

10^/10

suricata
- suricata: ET MALWARE GoldenSpy Domain Observed
  suricata: ET MALWARE GoldenSpy Domain Observed
  suricata
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2