bd9b9b040739fa51722699261c11c5f0d0514281df4b1d3cd85246733ecdc76e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-08_fa3be5e19394876ec52605c4648c3e6d_goldeneye
Size

408KB
Sample

240109-hmb9eaghak
MD5

fa3be5e19394876ec52605c4648c3e6d
SHA1

25ccdce0af9a7b6eeafc0e561862be18761aaa3e
SHA256

bd9b9b040739fa51722699261c11c5f0d0514281df4b1d3cd85246733ecdc76e
SHA512

abfcad5d200033723b0d92b1760eb00785ed374dbbe21bdd146e8db3f7d6f374a6dbab7e19019831a653ab359fc41278bca7b778ca51aeb28451f204fee44e9c
SSDEEP

3072:CEGh0okl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGGldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2024-01-08_fa3be5e19394876ec52605c4648c3e6d_goldeneye
- Size
  
  408KB
- MD5
  
  fa3be5e19394876ec52605c4648c3e6d
- SHA1
  
  25ccdce0af9a7b6eeafc0e561862be18761aaa3e
- SHA256
  
  bd9b9b040739fa51722699261c11c5f0d0514281df4b1d3cd85246733ecdc76e
- SHA512
  
  abfcad5d200033723b0d92b1760eb00785ed374dbbe21bdd146e8db3f7d6f374a6dbab7e19019831a653ab359fc41278bca7b778ca51aeb28451f204fee44e9c
- SSDEEP
  
  3072:CEGh0okl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGGldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2