c6c9b2a86082626640a356cfb051cc1f79e25c8682c88bb12ddd384e32262fcc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-05_37914c0205aeb56d78ab169765a966c0_goldeneye_JC.exe
Size

344KB
Sample

231023-yr5phsed2t
MD5

37914c0205aeb56d78ab169765a966c0
SHA1

0232ac57565650c8f849b7b03a5fe5434a38f354
SHA256

c6c9b2a86082626640a356cfb051cc1f79e25c8682c88bb12ddd384e32262fcc
SHA512

c08cbee6da8b6c7372e7701bbb9ae2a677535ef0c00bff8859984b2cf0e413ed9b61e4b0a12e6ef961a7efa255d3806820017d8a882cd338c17b73f72740961a
SSDEEP

3072:mEGh0oMlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGSlqOe2MUVg3v2IneKcAEcA

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2023-09-05_37914c0205aeb56d78ab169765a966c0_goldeneye_JC.exe
- Size
  
  344KB
- MD5
  
  37914c0205aeb56d78ab169765a966c0
- SHA1
  
  0232ac57565650c8f849b7b03a5fe5434a38f354
- SHA256
  
  c6c9b2a86082626640a356cfb051cc1f79e25c8682c88bb12ddd384e32262fcc
- SHA512
  
  c08cbee6da8b6c7372e7701bbb9ae2a677535ef0c00bff8859984b2cf0e413ed9b61e4b0a12e6ef961a7efa255d3806820017d8a882cd338c17b73f72740961a
- SSDEEP
  
  3072:mEGh0oMlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGSlqOe2MUVg3v2IneKcAEcA
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2