goldenspy | 285714ff750fe1b3343593b2efb7fc3e8229e755c128759faedc5654deae879a | Triage

Sharing

General

Target

285714ff750fe1b3343593b2efb7fc3e8229e755c128759faedc5654deae879a
Size

514KB
Sample

220204-mmsnlshcgm
MD5

42117d18cd9f8597533fee5ad530564f
SHA1

21045213f9ed383467ca9596107fe6df96fcc845
SHA256

285714ff750fe1b3343593b2efb7fc3e8229e755c128759faedc5654deae879a
SHA512

faa3575de6d0fcad608500cf7fdc2eead49990095cf4a4730c9332faeb56fac58d76bd229437ca83c476d658717839edff4a52c3bf3c083e32e2b67bbbc941e1

Score

10^/10

goldenspy persistence

Malware Config

Targets

- Target
  
  285714ff750fe1b3343593b2efb7fc3e8229e755c128759faedc5654deae879a
- Size
  
  514KB
- MD5
  
  42117d18cd9f8597533fee5ad530564f
- SHA1
  
  21045213f9ed383467ca9596107fe6df96fcc845
- SHA256
  
  285714ff750fe1b3343593b2efb7fc3e8229e755c128759faedc5654deae879a
- SHA512
  
  faa3575de6d0fcad608500cf7fdc2eead49990095cf4a4730c9332faeb56fac58d76bd229437ca83c476d658717839edff4a52c3bf3c083e32e2b67bbbc941e1
Score

8^/10

persistence
- Sets service image path in registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2