e514a159cf0de20234029b5ab2607bce6bb770ac84552ca0c1bdf19fb47d5678 | Triage

Resubmissions

13-03-2024 21:07

240313-zymyqaba63 7

Sharing

General

Target

goldloader.zip
Size

10.3MB
Sample

240313-zymyqaba63
MD5

c77518c8eeb10f16fddecdb1eb33d148
SHA1

f1f76b0296ad5d263b151268417b14cb9795f026
SHA256

e514a159cf0de20234029b5ab2607bce6bb770ac84552ca0c1bdf19fb47d5678
SHA512

edfd8de40c8fc2740114a3b22a30d44d8e0c057ffc078036dd61aef5c7e5a900eda770f3d4e565583b95b0e249b63483bf7f88a68717e6eed169444008f6a07e
SSDEEP

196608:iwqJne5+grCoV3IQTDE/6W//SDU/b8VOlzUFJSBQ7HR5EBCd:JrCoeQTDHWHSD+7laJSaHoBCd

Score

7^/10

Malware Config

Targets

- Target
  
  goldloader/goldloader/APIFOR.DLL
- Size
  
  13KB
- MD5
  
  91b4d211faddb0ebc64fb000d75d96c1
- SHA1
  
  ba496c122f8e562ff0a4fb272a68f0b9e7bf0a3c
- SHA256
  
  e47ab6fb21bd8943f63d79387533abac0c2bd98245546df44c4f333d8013c4de
- SHA512
  
  3f16b0b4618d446d0e42ed2063c611b4ffa72a5b0ff438df5286a216167881737e65d494aa12186e511690eaca2f51c00889c9eae5ab6392c1edf885e5592919
- SSDEEP
  
  192:NVjzYtxJYPX7OdfdnHpZt8kit/2Y3ciPYEC3qHa:NVgbkXK5NHpZikit/NYE4qHa
Score

1^/10
behavioral1 behavioral2
- Target
  
  goldloader/goldloader/ReaLTaiizor.dll
- Size
  
  5.8MB
- MD5
  
  8e10eb4aceeade1e5818e68f6756fcf8
- SHA1
  
  f1ec8c97e4fbc1fb51f291cb5aea90e2bcb40b06
- SHA256
  
  fe647161ef18bf59ef06ee52a94957699b04ee4019941e963920ced1c7a4450f
- SHA512
  
  3f0d4f5008f7a0f7b3b696aeb49c001015e2562769abaf91edc5bca1e8ece97e4eca7afd93c7d292172a2828fc3dcbf0fb153f6d39420f3e7fe3250fc2cb9213
- SSDEEP
  
  98304:edDTHppTPBzjYz067yqu/mnFQOi33nFbO4KSgPTPgS8NAvKBUuYW2b/i2BoRow/0:WZ2PEW2U
Score

1^/10
behavioral3 behavioral4
- Target
  
  goldloader/goldloader/goldloader.bat
- Size
  
  10.2MB
- MD5
  
  9e777fd3e4031a743b949766cb1bcdd6
- SHA1
  
  ba1c002a35010136c57cca2f57a286187ea509c8
- SHA256
  
  59cb3386ba393695997864d5d1f1a93bd562c8fbefb8442432b179a3c1ef6380
- SHA512
  
  b4a797c23971b1af126687860da29562522e315e60e7df8b2732fac3ef65fc5f965765e57ec9a11380bbd150344131067025c8c2e6d038453751d8e282b54d92
- SSDEEP
  
  49152:Jn+Z+alaQ1JRlZZD+kd4NPbvOxV4z5FhC6GcewS7XL9g9mdV+D9ghtflf0stdy4Z:S
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6