34be959ae71151965171b144e5a2c84bde60882b7df7de24643a96ca3d3b9c41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-25_dc9bc9200fcd1115af2beffce6c0840c_goldeneye.exe
Size

408KB
Sample

231106-zmpceaeh6w
MD5

dc9bc9200fcd1115af2beffce6c0840c
SHA1

ee780633077a14166fc9f4938537446c016dfdfd
SHA256

34be959ae71151965171b144e5a2c84bde60882b7df7de24643a96ca3d3b9c41
SHA512

2101cf3102976b860ae307a48fb50c0f18c3a108f46fcbd64456b634e8ebaa7a3a87caa4d0fc56e44395c8b4741e188b7b3d1c87e5186da00df010e8ddcfb41a
SSDEEP

3072:CEGh0oBl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGjldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  NEAS.2023-09-25_dc9bc9200fcd1115af2beffce6c0840c_goldeneye.exe
- Size
  
  408KB
- MD5
  
  dc9bc9200fcd1115af2beffce6c0840c
- SHA1
  
  ee780633077a14166fc9f4938537446c016dfdfd
- SHA256
  
  34be959ae71151965171b144e5a2c84bde60882b7df7de24643a96ca3d3b9c41
- SHA512
  
  2101cf3102976b860ae307a48fb50c0f18c3a108f46fcbd64456b634e8ebaa7a3a87caa4d0fc56e44395c8b4741e188b7b3d1c87e5186da00df010e8ddcfb41a
- SSDEEP
  
  3072:CEGh0oBl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGjldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2