a17a5911402f061ee07dddb9a735c829c1b8d14eb668b9217469be643498002d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7e03dd8d99ecc2661b3834b3372b9e0_goldeneye_JC.exe
Size

408KB
Sample

230827-qz83xabf4w
MD5

a7e03dd8d99ecc2661b3834b3372b9e0
SHA1

d14b6191f0b7f652091ac6bcc3cef5129574476d
SHA256

a17a5911402f061ee07dddb9a735c829c1b8d14eb668b9217469be643498002d
SHA512

0cecb3957a9c4457c22ae5efd0c763900b3bd2db0414ffab4e17953aaf94b2604f46011053f8fc654ad4d9b431018ebadf9158d30952ee0febca05fb23e73dbc
SSDEEP

3072:CEGh0oXl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEG1ldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a7e03dd8d99ecc2661b3834b3372b9e0_goldeneye_JC.exe
- Size
  
  408KB
- MD5
  
  a7e03dd8d99ecc2661b3834b3372b9e0
- SHA1
  
  d14b6191f0b7f652091ac6bcc3cef5129574476d
- SHA256
  
  a17a5911402f061ee07dddb9a735c829c1b8d14eb668b9217469be643498002d
- SHA512
  
  0cecb3957a9c4457c22ae5efd0c763900b3bd2db0414ffab4e17953aaf94b2604f46011053f8fc654ad4d9b431018ebadf9158d30952ee0febca05fb23e73dbc
- SSDEEP
  
  3072:CEGh0oXl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEG1ldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2