a7a7aece756440fc07a24ae1f456c7744678b49615109b134e5ef93169ed30ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-07_06f843f33730d01eb591f882da41dc07_goldeneye_JC.exe
Size

168KB
Sample

231031-sxt73sad8w
MD5

06f843f33730d01eb591f882da41dc07
SHA1

c3157f4ae69c3cca3aef7a00ca2ce5132b9fd118
SHA256

a7a7aece756440fc07a24ae1f456c7744678b49615109b134e5ef93169ed30ab
SHA512

a33256ef4ecbf2be9c4d2aa267ed10b2bfa5def4b1827618432091b0f5a488ed62704549e7b65881639eb7b7493058b76408bc4c40211cb44b5ca9d9be0ea665
SSDEEP

1536:1EGh0oTli5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0oTliOPOe2MUVg3Ve+rX

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2023-09-07_06f843f33730d01eb591f882da41dc07_goldeneye_JC.exe
- Size
  
  168KB
- MD5
  
  06f843f33730d01eb591f882da41dc07
- SHA1
  
  c3157f4ae69c3cca3aef7a00ca2ce5132b9fd118
- SHA256
  
  a7a7aece756440fc07a24ae1f456c7744678b49615109b134e5ef93169ed30ab
- SHA512
  
  a33256ef4ecbf2be9c4d2aa267ed10b2bfa5def4b1827618432091b0f5a488ed62704549e7b65881639eb7b7493058b76408bc4c40211cb44b5ca9d9be0ea665
- SSDEEP
  
  1536:1EGh0oTli5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0oTliOPOe2MUVg3Ve+rX
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2