56fe03b41b09f2ec6acf3faa8065a2098d48ff023d4440458289ce76de57fc83 | Triage

Sharing

General

Target

56fe03b41b09f2ec6acf3faa8065a2098d48ff023d4440458289ce76de57fc83
Size

323KB
Sample

220725-bflqyagegr
MD5

62500774f0b0b9f87980298bd465b1ee
SHA1

81850f0b3139a975f8f5f521bf039d352b79d2b2
SHA256

56fe03b41b09f2ec6acf3faa8065a2098d48ff023d4440458289ce76de57fc83
SHA512

14d7528bb3d51cb89d88a2f4a67a2e3035dfa058e5bfcac7682ff566aff9d23daf8c795999150a87576a00e7cc1877daa4bef718f04c796c1a9851cf605256f9

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  56fe03b41b09f2ec6acf3faa8065a2098d48ff023d4440458289ce76de57fc83
- Size
  
  323KB
- MD5
  
  62500774f0b0b9f87980298bd465b1ee
- SHA1
  
  81850f0b3139a975f8f5f521bf039d352b79d2b2
- SHA256
  
  56fe03b41b09f2ec6acf3faa8065a2098d48ff023d4440458289ce76de57fc83
- SHA512
  
  14d7528bb3d51cb89d88a2f4a67a2e3035dfa058e5bfcac7682ff566aff9d23daf8c795999150a87576a00e7cc1877daa4bef718f04c796c1a9851cf605256f9
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2