b6d224d5ebed8de5a1699f560562689b69213d314daeb9f35efbfac7ba54ad51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-24_f0607d12f0632415a7cc1faee9d0cfca_goldeneye
Size

372KB
Sample

240724-g3rtcsvfqe
MD5

f0607d12f0632415a7cc1faee9d0cfca
SHA1

daf7c79ae92e3c1b5ed047ae99866dbf80e019dd
SHA256

b6d224d5ebed8de5a1699f560562689b69213d314daeb9f35efbfac7ba54ad51
SHA512

8f58068792bfdff9fc0bcd1ddd97bffe30ab9c9a7d2ac2ee09b34ebc69dd62c5c673646f692b9bc3981c8c4b3487681dc9698052d39d27f627eeb6954125e6b7
SSDEEP

3072:CEGh0owlMOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBfM:CEGalkOe2MUVg3vTeKcAEciTBqr3

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-07-24_f0607d12f0632415a7cc1faee9d0cfca_goldeneye
- Size
  
  372KB
- MD5
  
  f0607d12f0632415a7cc1faee9d0cfca
- SHA1
  
  daf7c79ae92e3c1b5ed047ae99866dbf80e019dd
- SHA256
  
  b6d224d5ebed8de5a1699f560562689b69213d314daeb9f35efbfac7ba54ad51
- SHA512
  
  8f58068792bfdff9fc0bcd1ddd97bffe30ab9c9a7d2ac2ee09b34ebc69dd62c5c673646f692b9bc3981c8c4b3487681dc9698052d39d27f627eeb6954125e6b7
- SSDEEP
  
  3072:CEGh0owlMOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBfM:CEGalkOe2MUVg3vTeKcAEciTBqr3
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence