Overview

overview

10

Static

static

10

2024-04-27...ye.exe

windows7-x64

9

2024-04-27...ye.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-27_d3e5ccc5b84e36b87827a78afeb2dca9_goldeneye

  • Size

    168KB

  • Sample

    240427-m3fzrahg3v

  • MD5

    d3e5ccc5b84e36b87827a78afeb2dca9

  • SHA1

    45e009483871900ab6d9af9e1d6daeb508910612

  • SHA256

    fb8c269eefaa826ee3067b214f1475e0f9c2c7cf37cd1185b34676adafec61bf

  • SHA512

    6ddcd3f7e4bab151b1a6e71eb2a7abcdd9e16a4330068ea9aef1640de16c391f264d7ccc643aee3b3c5eebd228e30fb4e87a94bab88857adcab3d49347c2c9ae

  • SSDEEP

    1536:1EGh0oYlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0oYlqOPOe2MUVg3Ve+rX

Score
10/10
persistence

Malware Config

Targets

    • Target

      2024-04-27_d3e5ccc5b84e36b87827a78afeb2dca9_goldeneye

    • Size

      168KB

    • MD5

      d3e5ccc5b84e36b87827a78afeb2dca9

    • SHA1

      45e009483871900ab6d9af9e1d6daeb508910612

    • SHA256

      fb8c269eefaa826ee3067b214f1475e0f9c2c7cf37cd1185b34676adafec61bf

    • SHA512

      6ddcd3f7e4bab151b1a6e71eb2a7abcdd9e16a4330068ea9aef1640de16c391f264d7ccc643aee3b3c5eebd228e30fb4e87a94bab88857adcab3d49347c2c9ae

    • SSDEEP

      1536:1EGh0oYlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0oYlqOPOe2MUVg3Ve+rX

    Score
    9/10
    persistence

    • Auto-generated rule

    • Modifies Installed Components in the registry

      persistence

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks