57783feae1550c801ec2b118df6829bcd31ae017d7633df04dfaeb7d8a718ded | Triage

Sharing

General

Target

57783feae1550c801ec2b118df6829bcd31ae017d7633df04dfaeb7d8a718ded
Size

304KB
Sample

220724-15g7gsaear
MD5

3b1b6b65c943ed167ccf6a7f461aac99
SHA1

49e9784afafaeb1bcbff573c13e2a4bdd0221b7e
SHA256

57783feae1550c801ec2b118df6829bcd31ae017d7633df04dfaeb7d8a718ded
SHA512

c70344d6fbdee4f2147dd5393e9d731b45f22850935bbe8c6826dd8796f4a9b6d42c0ffa3ffc9ada12200e22f9d9c19ce433b25277e82ada01b6cdb0828651e6

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  57783feae1550c801ec2b118df6829bcd31ae017d7633df04dfaeb7d8a718ded
- Size
  
  304KB
- MD5
  
  3b1b6b65c943ed167ccf6a7f461aac99
- SHA1
  
  49e9784afafaeb1bcbff573c13e2a4bdd0221b7e
- SHA256
  
  57783feae1550c801ec2b118df6829bcd31ae017d7633df04dfaeb7d8a718ded
- SHA512
  
  c70344d6fbdee4f2147dd5393e9d731b45f22850935bbe8c6826dd8796f4a9b6d42c0ffa3ffc9ada12200e22f9d9c19ce433b25277e82ada01b6cdb0828651e6
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2