goldenspy | 67316d574d0e05549bf314b4764842e2b598f2ffae1ac82123b3dd592f605751 | Triage

Sharing

General

Target

67316d574d0e05549bf314b4764842e2b598f2ffae1ac82123b3dd592f605751
Size

504KB
Sample

220204-mhtecahcap
MD5

fb1da3f1747ee138c19ac4d423b87595
SHA1

525473d5f59925412d2587693bfb9d4647027c48
SHA256

67316d574d0e05549bf314b4764842e2b598f2ffae1ac82123b3dd592f605751
SHA512

902643dc92d313f008440f071c741ebea2e246a8f50e7f1634f4822bcea8e599b5b62997cafedbdc6a6fc41dfdc4cb88945c64416347bf7ae95ac4ae4a19d3d7

Score

10^/10

goldenspy persistence

Malware Config

Targets

- Target
  
  67316d574d0e05549bf314b4764842e2b598f2ffae1ac82123b3dd592f605751
- Size
  
  504KB
- MD5
  
  fb1da3f1747ee138c19ac4d423b87595
- SHA1
  
  525473d5f59925412d2587693bfb9d4647027c48
- SHA256
  
  67316d574d0e05549bf314b4764842e2b598f2ffae1ac82123b3dd592f605751
- SHA512
  
  902643dc92d313f008440f071c741ebea2e246a8f50e7f1634f4822bcea8e599b5b62997cafedbdc6a6fc41dfdc4cb88945c64416347bf7ae95ac4ae4a19d3d7
Score

8^/10

persistence
- Sets service image path in registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2