55f7a3dc8264e0089dd02e092c31f5bcd943435bb8ce1f5908decf82e6402b2d | Triage

Sharing

General

Target

55f7a3dc8264e0089dd02e092c31f5bcd943435bb8ce1f5908decf82e6402b2d
Size

345KB
Sample

220725-g19ldsadbl
MD5

2b1b14d381604aec54a2dcaf6492e55d
SHA1

c9996952fd0826a5657a68658b3151fa010f5dac
SHA256

55f7a3dc8264e0089dd02e092c31f5bcd943435bb8ce1f5908decf82e6402b2d
SHA512

f052f047dce8744be036a9c8e1e348ac3b579875db041ceded0d446508a2e6b61eae64fbc8a782f6d60194dce98181edbc37799fd3275511a12d32ae46a4c247

Score

10^/10

discovery suricata

Malware Config

Targets

- Target
  
  55f7a3dc8264e0089dd02e092c31f5bcd943435bb8ce1f5908decf82e6402b2d
- Size
  
  345KB
- MD5
  
  2b1b14d381604aec54a2dcaf6492e55d
- SHA1
  
  c9996952fd0826a5657a68658b3151fa010f5dac
- SHA256
  
  55f7a3dc8264e0089dd02e092c31f5bcd943435bb8ce1f5908decf82e6402b2d
- SHA512
  
  f052f047dce8744be036a9c8e1e348ac3b579875db041ceded0d446508a2e6b61eae64fbc8a782f6d60194dce98181edbc37799fd3275511a12d32ae46a4c247
Score

10^/10

discovery suricata
- suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata: ET MALWARE ETag HTTP Header Observed at JPCERT Sinkhole
  suricata
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverysuricata

behavioral2