56c93f4883f3c77f61714c35103a8730f346c5abe803178d9571089d5046bc5f | Triage

Sharing

General

Target

56c93f4883f3c77f61714c35103a8730f346c5abe803178d9571089d5046bc5f
Size

283KB
Sample

220725-b4m9nshgbj
MD5

5497cdf4e3d8f2c269fea75278df88a7
SHA1

43bad30d7a6e008cbf45da9b8b62dc051bba65d6
SHA256

56c93f4883f3c77f61714c35103a8730f346c5abe803178d9571089d5046bc5f
SHA512

7a0494b9a15e119f5a708156f905745b88802a8b81fab4528bdc4b17c77638523f9d80ac448ba5075b6bb4bbc0500cea4beab3c9df72e3a082e3de798133042a

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  56c93f4883f3c77f61714c35103a8730f346c5abe803178d9571089d5046bc5f
- Size
  
  283KB
- MD5
  
  5497cdf4e3d8f2c269fea75278df88a7
- SHA1
  
  43bad30d7a6e008cbf45da9b8b62dc051bba65d6
- SHA256
  
  56c93f4883f3c77f61714c35103a8730f346c5abe803178d9571089d5046bc5f
- SHA512
  
  7a0494b9a15e119f5a708156f905745b88802a8b81fab4528bdc4b17c77638523f9d80ac448ba5075b6bb4bbc0500cea4beab3c9df72e3a082e3de798133042a
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2