1285f27f87edd06610243f56e400b0c2a581457fb94795b2f9d191e277d84822 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-08_a5e94d75b9872dac85ea16d83ec2b770_goldeneye
Size

344KB
Sample

240109-hjev5aegaq
MD5

a5e94d75b9872dac85ea16d83ec2b770
SHA1

18c75cc20d3e924d2bce24f542588ff9d4e2bbbe
SHA256

1285f27f87edd06610243f56e400b0c2a581457fb94795b2f9d191e277d84822
SHA512

eef4549e58a640f7833dd7f09cbd3ed7f3ec0f6906f89a5d8de714c7563a07fb10058542265892d73fcd1d36d4da5e8f35ecd16f0fd436f96b3f5fc02516ca88
SSDEEP

3072:mEGh0o+lEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGQlqOe2MUVg3v2IneKcAEcA

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2024-01-08_a5e94d75b9872dac85ea16d83ec2b770_goldeneye
- Size
  
  344KB
- MD5
  
  a5e94d75b9872dac85ea16d83ec2b770
- SHA1
  
  18c75cc20d3e924d2bce24f542588ff9d4e2bbbe
- SHA256
  
  1285f27f87edd06610243f56e400b0c2a581457fb94795b2f9d191e277d84822
- SHA512
  
  eef4549e58a640f7833dd7f09cbd3ed7f3ec0f6906f89a5d8de714c7563a07fb10058542265892d73fcd1d36d4da5e8f35ecd16f0fd436f96b3f5fc02516ca88
- SSDEEP
  
  3072:mEGh0o+lEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGQlqOe2MUVg3v2IneKcAEcA
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2