6c207349c2fd03218a0277cb02fee5327747ac62ae61b9814d7238d19cee6842 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a372e501f53d7b9b8970919c01894ec_goldeneye_JC.exe
Size

408KB
Sample

230825-ssh91seh8s
MD5

9a372e501f53d7b9b8970919c01894ec
SHA1

d286ed9eb8970853a57f776990f386c852b76392
SHA256

6c207349c2fd03218a0277cb02fee5327747ac62ae61b9814d7238d19cee6842
SHA512

b6623f6de3f13a895c5f0a3f1aba75f555a27e5ec91ea6a67c87a9a937c4af38a9d2f17000a697756c3a1ae85c026182014a37074fbc7069deff97c5eb74df92
SSDEEP

3072:CEGh0o+l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGcldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9a372e501f53d7b9b8970919c01894ec_goldeneye_JC.exe
- Size
  
  408KB
- MD5
  
  9a372e501f53d7b9b8970919c01894ec
- SHA1
  
  d286ed9eb8970853a57f776990f386c852b76392
- SHA256
  
  6c207349c2fd03218a0277cb02fee5327747ac62ae61b9814d7238d19cee6842
- SHA512
  
  b6623f6de3f13a895c5f0a3f1aba75f555a27e5ec91ea6a67c87a9a937c4af38a9d2f17000a697756c3a1ae85c026182014a37074fbc7069deff97c5eb74df92
- SSDEEP
  
  3072:CEGh0o+l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGcldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2