56cd19d2de2dd5d769a0343ccab3712c92e93e7e1fdd73a84806966c84e3e664 | Triage

Sharing

General

Target

56cd19d2de2dd5d769a0343ccab3712c92e93e7e1fdd73a84806966c84e3e664
Size

308KB
Sample

220725-b22paahfdm
MD5

156e697cec29b1ea71b8778ed176604b
SHA1

b373e6caee5578b2297819210202ab2ea1f3d784
SHA256

56cd19d2de2dd5d769a0343ccab3712c92e93e7e1fdd73a84806966c84e3e664
SHA512

d68cec25f968068f373ab186918f6ddd84660471664a6db9263e0f34fbb4ad8aebc05eb4c8cb43a85b6372bb84b129d2e8fe4a6d62a4c313fb43f937b6288cae

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  56cd19d2de2dd5d769a0343ccab3712c92e93e7e1fdd73a84806966c84e3e664
- Size
  
  308KB
- MD5
  
  156e697cec29b1ea71b8778ed176604b
- SHA1
  
  b373e6caee5578b2297819210202ab2ea1f3d784
- SHA256
  
  56cd19d2de2dd5d769a0343ccab3712c92e93e7e1fdd73a84806966c84e3e664
- SHA512
  
  d68cec25f968068f373ab186918f6ddd84660471664a6db9263e0f34fbb4ad8aebc05eb4c8cb43a85b6372bb84b129d2e8fe4a6d62a4c313fb43f937b6288cae
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2