20fa314168ae4737d0396a1f34e054ad38d84ae27b1f09cba8d5f840bb0bb315 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-24_5d0bb79a241d19673b9172d34aae6fb6_goldeneye
Size

197KB
Sample

240724-gr1xwsvbph
MD5

5d0bb79a241d19673b9172d34aae6fb6
SHA1

e4cf9d5dac400109b80f7d80ca7e44c765272a0d
SHA256

20fa314168ae4737d0396a1f34e054ad38d84ae27b1f09cba8d5f840bb0bb315
SHA512

75133d1c5da914da821d083a9136113965adfbf2113e130df907f55664410d6ea6d69e36f5add5f4ebc6879155434ea4c3f150c6f00ecb1be24425effc5dd517
SSDEEP

3072:jEGh0oKl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGIlEeKcAEca

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-07-24_5d0bb79a241d19673b9172d34aae6fb6_goldeneye
- Size
  
  197KB
- MD5
  
  5d0bb79a241d19673b9172d34aae6fb6
- SHA1
  
  e4cf9d5dac400109b80f7d80ca7e44c765272a0d
- SHA256
  
  20fa314168ae4737d0396a1f34e054ad38d84ae27b1f09cba8d5f840bb0bb315
- SHA512
  
  75133d1c5da914da821d083a9136113965adfbf2113e130df907f55664410d6ea6d69e36f5add5f4ebc6879155434ea4c3f150c6f00ecb1be24425effc5dd517
- SSDEEP
  
  3072:jEGh0oKl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGIlEeKcAEca
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence