a7a08ed8675564831ad83cf653ad34fe395f4f574b1b5bae0217318ad5a320e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13e57c9944836f69f2a09ced6f9f1313_goldeneye_JC.exe
Size

216KB
Sample

230817-skhnhsab43
MD5

13e57c9944836f69f2a09ced6f9f1313
SHA1

320d50265b98842e282145283ad1b81343c515f3
SHA256

a7a08ed8675564831ad83cf653ad34fe395f4f574b1b5bae0217318ad5a320e1
SHA512

a8eda1aae1af63a6cf49f8498baf83bcc01e55591ac6cf602f38ff8417581aebbb4c938313af9a3ac24e5f50c2e9d7e3d45b26d860d26df9d06f5f975b55d07e
SSDEEP

3072:jEGh0ool+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGOlEeKcAEcGy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  13e57c9944836f69f2a09ced6f9f1313_goldeneye_JC.exe
- Size
  
  216KB
- MD5
  
  13e57c9944836f69f2a09ced6f9f1313
- SHA1
  
  320d50265b98842e282145283ad1b81343c515f3
- SHA256
  
  a7a08ed8675564831ad83cf653ad34fe395f4f574b1b5bae0217318ad5a320e1
- SHA512
  
  a8eda1aae1af63a6cf49f8498baf83bcc01e55591ac6cf602f38ff8417581aebbb4c938313af9a3ac24e5f50c2e9d7e3d45b26d860d26df9d06f5f975b55d07e
- SSDEEP
  
  3072:jEGh0ool+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGOlEeKcAEcGy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2