8b4b00725fd96d67e7dbd93cad24904d5c3efa1347e9568972cc0bfae7e7e5bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-23_34f8278b60e1af795a889070d7d65b93_goldeneye_JC.exe
Size

180KB
Sample

230903-xwr4jsbe7t
MD5

34f8278b60e1af795a889070d7d65b93
SHA1

a625eb666136b362487244c38600b39f3e404b60
SHA256

8b4b00725fd96d67e7dbd93cad24904d5c3efa1347e9568972cc0bfae7e7e5bf
SHA512

a1b4b6432c88f30e56bc417b89b5fba2e49deaa7e8ce99c93afe987eeac240a9bd083c36ba9a1174740505ed731968c034894fa44c5b2caf2eab250e7452af38
SSDEEP

3072:jEGh0oKlfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEG4l5eKcAEc

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2023-08-23_34f8278b60e1af795a889070d7d65b93_goldeneye_JC.exe
- Size
  
  180KB
- MD5
  
  34f8278b60e1af795a889070d7d65b93
- SHA1
  
  a625eb666136b362487244c38600b39f3e404b60
- SHA256
  
  8b4b00725fd96d67e7dbd93cad24904d5c3efa1347e9568972cc0bfae7e7e5bf
- SHA512
  
  a1b4b6432c88f30e56bc417b89b5fba2e49deaa7e8ce99c93afe987eeac240a9bd083c36ba9a1174740505ed731968c034894fa44c5b2caf2eab250e7452af38
- SSDEEP
  
  3072:jEGh0oKlfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEG4l5eKcAEc
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2