02581c7380cf7c96a813ab878da1d8a283ddbf226001516ff0523ae988619127 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a1e8c1be32923a820560cbdc0c17dbf9_goldeneye_JC.exe
Size

372KB
Sample

230826-qspexscd5s
MD5

a1e8c1be32923a820560cbdc0c17dbf9
SHA1

0b4791695ff296470a48355ff7ea384b93287f74
SHA256

02581c7380cf7c96a813ab878da1d8a283ddbf226001516ff0523ae988619127
SHA512

1afc92e7edb54f526988d236ecd538a8669a9fb7af192aa84d0a4febfe7e31e90d2080fa7d6ddcfa86e9e91727638dd3f691798159f0221b0fdb5ae6ed8d697f
SSDEEP

3072:CEGh0oTmlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEG8l/Oe2MUVg3vTeKcAEciTBqr3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a1e8c1be32923a820560cbdc0c17dbf9_goldeneye_JC.exe
- Size
  
  372KB
- MD5
  
  a1e8c1be32923a820560cbdc0c17dbf9
- SHA1
  
  0b4791695ff296470a48355ff7ea384b93287f74
- SHA256
  
  02581c7380cf7c96a813ab878da1d8a283ddbf226001516ff0523ae988619127
- SHA512
  
  1afc92e7edb54f526988d236ecd538a8669a9fb7af192aa84d0a4febfe7e31e90d2080fa7d6ddcfa86e9e91727638dd3f691798159f0221b0fdb5ae6ed8d697f
- SSDEEP
  
  3072:CEGh0oTmlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEG8l/Oe2MUVg3vTeKcAEciTBqr3
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2