5766ea1026a1b33414c20f92069d00face4c1269a5e2b5ea280254cd74b474f5 | Triage

Sharing

General

Target

5766ea1026a1b33414c20f92069d00face4c1269a5e2b5ea280254cd74b474f5
Size

214KB
Sample

220724-2qw8jabfhp
MD5

229b2aa85df827a6108c623147a66de2
SHA1

2ef2e9a66fe2f080eb5371f8d1af0932ed666762
SHA256

5766ea1026a1b33414c20f92069d00face4c1269a5e2b5ea280254cd74b474f5
SHA512

defb8ad3206609c1b947fe4482cd8518ca08acb3bec5f75cf1a7eb64d4a4dc8fa6487d888ffaa6d3719986ded9d7281f270fa297b99dab11dc0d41545d8fa45e

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  5766ea1026a1b33414c20f92069d00face4c1269a5e2b5ea280254cd74b474f5
- Size
  
  214KB
- MD5
  
  229b2aa85df827a6108c623147a66de2
- SHA1
  
  2ef2e9a66fe2f080eb5371f8d1af0932ed666762
- SHA256
  
  5766ea1026a1b33414c20f92069d00face4c1269a5e2b5ea280254cd74b474f5
- SHA512
  
  defb8ad3206609c1b947fe4482cd8518ca08acb3bec5f75cf1a7eb64d4a4dc8fa6487d888ffaa6d3719986ded9d7281f270fa297b99dab11dc0d41545d8fa45e
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2