563a709ab58b764ae7ce4ec597e9d9affe2e77c47b7e8b720025569d2fd20092 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abad2160b2439eb4f631a6095e0f601f_goldeneye_JC.exe
Size

216KB
Sample

230827-r7dseacc3v
MD5

abad2160b2439eb4f631a6095e0f601f
SHA1

cf440f41d36a87cfddcae5fe92928cdc1138be17
SHA256

563a709ab58b764ae7ce4ec597e9d9affe2e77c47b7e8b720025569d2fd20092
SHA512

20cc7db0b4fe8f030e103c6e979b04add228eb4cc0439b4b988618bfff528260354b1e552e58f61856b32e8040339b9a4e6d9ab6b78b1f054f7856e2aaaf0491
SSDEEP

3072:jEGh0oAl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGClEeKcAEcGy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  abad2160b2439eb4f631a6095e0f601f_goldeneye_JC.exe
- Size
  
  216KB
- MD5
  
  abad2160b2439eb4f631a6095e0f601f
- SHA1
  
  cf440f41d36a87cfddcae5fe92928cdc1138be17
- SHA256
  
  563a709ab58b764ae7ce4ec597e9d9affe2e77c47b7e8b720025569d2fd20092
- SHA512
  
  20cc7db0b4fe8f030e103c6e979b04add228eb4cc0439b4b988618bfff528260354b1e552e58f61856b32e8040339b9a4e6d9ab6b78b1f054f7856e2aaaf0491
- SSDEEP
  
  3072:jEGh0oAl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGClEeKcAEcGy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2