57139649ed40f7af535e279287f708ace824838d2d23ec648ef4435042504a9b | Triage

Sharing

General

Target

57139649ed40f7af535e279287f708ace824838d2d23ec648ef4435042504a9b
Size

2.0MB
Sample

220725-a536vagagk
MD5

8f612608a6d6afa1c6c7252fd7141f54
SHA1

814b1915fa91597c506bf7db70cb409a458710a1
SHA256

57139649ed40f7af535e279287f708ace824838d2d23ec648ef4435042504a9b
SHA512

df4a8b8fcf768a5a663907800438b7a24655256f7d98460865beccdc61842264b8344b27dea1512ba8fe3512774814972207d914a8a1e97d57349e79d8378e36

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  57139649ed40f7af535e279287f708ace824838d2d23ec648ef4435042504a9b
- Size
  
  2.0MB
- MD5
  
  8f612608a6d6afa1c6c7252fd7141f54
- SHA1
  
  814b1915fa91597c506bf7db70cb409a458710a1
- SHA256
  
  57139649ed40f7af535e279287f708ace824838d2d23ec648ef4435042504a9b
- SHA512
  
  df4a8b8fcf768a5a663907800438b7a24655256f7d98460865beccdc61842264b8344b27dea1512ba8fe3512774814972207d914a8a1e97d57349e79d8378e36
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2