620a8381da401216e9d8e4c1fec37bffcffa8dd0576d7ecee97a52b56a5a04f8 | Triage

Sharing

General

Target

17842c8951a159c36adafd753a087ab4_goldeneye_JC.exe
Size

408KB
Sample

230817-txdqrsag37
MD5

17842c8951a159c36adafd753a087ab4
SHA1

e49960ac8cbe0338a74e717485bbd6815066d2c7
SHA256

620a8381da401216e9d8e4c1fec37bffcffa8dd0576d7ecee97a52b56a5a04f8
SHA512

ac8346ee01db1cb5326663065f3d083e0e8336a5fbb96ad5db336d111018bab28d2867824c87fba8e51f65148538f9a147a86eadca06b83472faa157349b217e
SSDEEP

3072:CEGh0owl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGGldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  17842c8951a159c36adafd753a087ab4_goldeneye_JC.exe
- Size
  
  408KB
- MD5
  
  17842c8951a159c36adafd753a087ab4
- SHA1
  
  e49960ac8cbe0338a74e717485bbd6815066d2c7
- SHA256
  
  620a8381da401216e9d8e4c1fec37bffcffa8dd0576d7ecee97a52b56a5a04f8
- SHA512
  
  ac8346ee01db1cb5326663065f3d083e0e8336a5fbb96ad5db336d111018bab28d2867824c87fba8e51f65148538f9a147a86eadca06b83472faa157349b217e
- SSDEEP
  
  3072:CEGh0owl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGGldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2