166762d8676a7268854f0ab9b5b832e6268a613e360837c33fa5bad552eff56e | Triage

Sharing

General

Target

2024-01-06_5cf7406861241710aed40c3f2f898174_goldeneye
Size

408KB
Sample

240107-pb4ylsdecl
MD5

5cf7406861241710aed40c3f2f898174
SHA1

d4da06a93e9e9f6fdbe3f279451b1d78ca6dbbcf
SHA256

166762d8676a7268854f0ab9b5b832e6268a613e360837c33fa5bad552eff56e
SHA512

24696a26179c78730d04d7d54bca858c0506af125a757ae4afb5af7196949167492f5b76e2e460486ff2552665cf17c11db63d58c7d698315b585251de00f0a7
SSDEEP

3072:CEGh0onl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGdldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2024-01-06_5cf7406861241710aed40c3f2f898174_goldeneye
- Size
  
  408KB
- MD5
  
  5cf7406861241710aed40c3f2f898174
- SHA1
  
  d4da06a93e9e9f6fdbe3f279451b1d78ca6dbbcf
- SHA256
  
  166762d8676a7268854f0ab9b5b832e6268a613e360837c33fa5bad552eff56e
- SHA512
  
  24696a26179c78730d04d7d54bca858c0506af125a757ae4afb5af7196949167492f5b76e2e460486ff2552665cf17c11db63d58c7d698315b585251de00f0a7
- SSDEEP
  
  3072:CEGh0onl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGdldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2