5660367d8f80ea44967afd842dd6149887927d73cc56d6f8dc2513646df11f01 | Triage

Sharing

General

Target

5660367d8f80ea44967afd842dd6149887927d73cc56d6f8dc2513646df11f01
Size

309KB
Sample

220725-ea86tsdedq
MD5

5e13c60ded01f1be0fa773e2f9ea59ce
SHA1

aa7d5c03ecdb8b5b6ea575bbfd075e8ce34f79d5
SHA256

5660367d8f80ea44967afd842dd6149887927d73cc56d6f8dc2513646df11f01
SHA512

21a462d364acbdb1211f8d2c67a6884d1f2798cd89fb3456b3cf36af22d33a8b0cf2039019a350b6643e32de29a2f19a7ca0817ee5394b24aea978d220cd9107

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  5660367d8f80ea44967afd842dd6149887927d73cc56d6f8dc2513646df11f01
- Size
  
  309KB
- MD5
  
  5e13c60ded01f1be0fa773e2f9ea59ce
- SHA1
  
  aa7d5c03ecdb8b5b6ea575bbfd075e8ce34f79d5
- SHA256
  
  5660367d8f80ea44967afd842dd6149887927d73cc56d6f8dc2513646df11f01
- SHA512
  
  21a462d364acbdb1211f8d2c67a6884d1f2798cd89fb3456b3cf36af22d33a8b0cf2039019a350b6643e32de29a2f19a7ca0817ee5394b24aea978d220cd9107
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2