97989d6702517ababcd213fa0cd023b2f7fc0f7e9ff3900ecca8ed9c7d614362 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a57cdf629b25c2334672873acc2627f9_goldeneye_JC.exe
Size

216KB
Sample

230826-yfdfwsch38
MD5

a57cdf629b25c2334672873acc2627f9
SHA1

bde042661449bec4acee806d08ac5ccc0e285505
SHA256

97989d6702517ababcd213fa0cd023b2f7fc0f7e9ff3900ecca8ed9c7d614362
SHA512

ca33f831f6696f1663a8422535d1f8f6b0e1b9e854a3d5d0d08b1c981a2f53212548ea73efcefaa4881206ba1a3ecb58248fb3cd88a0d8dc1982299bd3f982e1
SSDEEP

3072:jEGh0oql+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGAlEeKcAEcGy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a57cdf629b25c2334672873acc2627f9_goldeneye_JC.exe
- Size
  
  216KB
- MD5
  
  a57cdf629b25c2334672873acc2627f9
- SHA1
  
  bde042661449bec4acee806d08ac5ccc0e285505
- SHA256
  
  97989d6702517ababcd213fa0cd023b2f7fc0f7e9ff3900ecca8ed9c7d614362
- SHA512
  
  ca33f831f6696f1663a8422535d1f8f6b0e1b9e854a3d5d0d08b1c981a2f53212548ea73efcefaa4881206ba1a3ecb58248fb3cd88a0d8dc1982299bd3f982e1
- SSDEEP
  
  3072:jEGh0oql+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGAlEeKcAEcGy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2