5633c8eb30f051c754cfaccbc25b96a308445e588d39d666cf6fbf0e252b4545 | Triage

Sharing

General

Target

5633c8eb30f051c754cfaccbc25b96a308445e588d39d666cf6fbf0e252b4545
Size

348KB
Sample

220725-fnkwtsfhaq
MD5

34d1dc2e81e5547d79a51f62b05dee3a
SHA1

679ab050deaf4f32844bacfb24ed35de1c07bf8f
SHA256

5633c8eb30f051c754cfaccbc25b96a308445e588d39d666cf6fbf0e252b4545
SHA512

91e56091907dcb653596d3d5df2770cc738156d6a8c808bd32aa603e1f1dbfb137c1007d788999c3eb2a353116943ce1cbde0d323e7e22c17042cb64af90b1fa

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  5633c8eb30f051c754cfaccbc25b96a308445e588d39d666cf6fbf0e252b4545
- Size
  
  348KB
- MD5
  
  34d1dc2e81e5547d79a51f62b05dee3a
- SHA1
  
  679ab050deaf4f32844bacfb24ed35de1c07bf8f
- SHA256
  
  5633c8eb30f051c754cfaccbc25b96a308445e588d39d666cf6fbf0e252b4545
- SHA512
  
  91e56091907dcb653596d3d5df2770cc738156d6a8c808bd32aa603e1f1dbfb137c1007d788999c3eb2a353116943ce1cbde0d323e7e22c17042cb64af90b1fa
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2