b97c4887a7f857434dc029f3d0d8456fc6c33db2bd4b26ebea5961d462901275 | Triage

Sharing

General

Target

NEAS.2023-09-05_5d3967deddabd832558711c82cce0dfd_goldeneye_JC.exe
Size

216KB
Sample

231023-tnz8eabh37
MD5

5d3967deddabd832558711c82cce0dfd
SHA1

2ad4e2c3ef1f141af71ae88b7d152dbcc39b0b12
SHA256

b97c4887a7f857434dc029f3d0d8456fc6c33db2bd4b26ebea5961d462901275
SHA512

077a9b3572ce7fe1839233bd169b0afde33262c7bb4272f2e6476f7c6d801197e6d81c8c72192dc7153c92e8736aba15638b2cb751f2441b830ce55b28e67dc2
SSDEEP

3072:jEGh0oOl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGolEeKcAEcGy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2023-09-05_5d3967deddabd832558711c82cce0dfd_goldeneye_JC.exe
- Size
  
  216KB
- MD5
  
  5d3967deddabd832558711c82cce0dfd
- SHA1
  
  2ad4e2c3ef1f141af71ae88b7d152dbcc39b0b12
- SHA256
  
  b97c4887a7f857434dc029f3d0d8456fc6c33db2bd4b26ebea5961d462901275
- SHA512
  
  077a9b3572ce7fe1839233bd169b0afde33262c7bb4272f2e6476f7c6d801197e6d81c8c72192dc7153c92e8736aba15638b2cb751f2441b830ce55b28e67dc2
- SSDEEP
  
  3072:jEGh0oOl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGolEeKcAEcGy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2