e0edb12f8049d29dd7f4236440d8e4d441c3d88db5580b3ca452c0cd86b7b2fc | Triage

Sharing

General

Target

NEAS.2023-09-27_a2b2562fe4da69f1a9d0564471abb379_goldeneye.exe
Size

180KB
Sample

231106-yz8q5sfh39
MD5

a2b2562fe4da69f1a9d0564471abb379
SHA1

301b5c102d502c0a1e8deab1220a2d911586760b
SHA256

e0edb12f8049d29dd7f4236440d8e4d441c3d88db5580b3ca452c0cd86b7b2fc
SHA512

5446303b913264c3a148f646bedf8b0d0eb634e27e0a39f99382617784f0a6377731ef70ec2ee30508a356d25fa94c98afabbf4f5fc7619a3fb1e270a572bf81
SSDEEP

3072:jEGh0o2lfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGQl5eKcAEc

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2023-09-27_a2b2562fe4da69f1a9d0564471abb379_goldeneye.exe
- Size
  
  180KB
- MD5
  
  a2b2562fe4da69f1a9d0564471abb379
- SHA1
  
  301b5c102d502c0a1e8deab1220a2d911586760b
- SHA256
  
  e0edb12f8049d29dd7f4236440d8e4d441c3d88db5580b3ca452c0cd86b7b2fc
- SHA512
  
  5446303b913264c3a148f646bedf8b0d0eb634e27e0a39f99382617784f0a6377731ef70ec2ee30508a356d25fa94c98afabbf4f5fc7619a3fb1e270a572bf81
- SSDEEP
  
  3072:jEGh0o2lfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGQl5eKcAEc
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2