5624536f8860ee50ae24bfb658004f6503ffa017ba3ae70c38a35f9db6f703ee | Triage

Sharing

General

Target

5624536f8860ee50ae24bfb658004f6503ffa017ba3ae70c38a35f9db6f703ee
Size

299KB
Sample

220725-f6xy4sggdl
MD5

5a2905bbc1dda9e50a62a5260cab8d4c
SHA1

4d9338c0e56eb7f1f287280bed7ac66b4d30318a
SHA256

5624536f8860ee50ae24bfb658004f6503ffa017ba3ae70c38a35f9db6f703ee
SHA512

d65a130e013c45653e0bd49d2632bf0da7b0cfd6450ad4d043047e37182bcea07b222e562e1556e25e9b9f3234670105bcad95f20ab401936986a9e02d63f43b

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  5624536f8860ee50ae24bfb658004f6503ffa017ba3ae70c38a35f9db6f703ee
- Size
  
  299KB
- MD5
  
  5a2905bbc1dda9e50a62a5260cab8d4c
- SHA1
  
  4d9338c0e56eb7f1f287280bed7ac66b4d30318a
- SHA256
  
  5624536f8860ee50ae24bfb658004f6503ffa017ba3ae70c38a35f9db6f703ee
- SHA512
  
  d65a130e013c45653e0bd49d2632bf0da7b0cfd6450ad4d043047e37182bcea07b222e562e1556e25e9b9f3234670105bcad95f20ab401936986a9e02d63f43b
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2