562b0fa87403e752d7216721bcb2f54e96fb42b061b51cdbab7defa313ec5e9b | Triage

Sharing

General

Target

2024-08-05_8e05d8885ed3eccea509bc0119bb559b_goldeneye
Size

372KB
Sample

240805-mpevjatejl
MD5

8e05d8885ed3eccea509bc0119bb559b
SHA1

c8a5cf2e6828b25c151952acc70b4fd1a68bfb0e
SHA256

562b0fa87403e752d7216721bcb2f54e96fb42b061b51cdbab7defa313ec5e9b
SHA512

907b13e4eae0aaf9275a7928255ce810a8330d7fcac80cb5b005e4e9bf70cdbcbef9abc58913a00b371657d6a3b26174fd54ffa2d7a1f77547c80f3eede534a7
SSDEEP

3072:CEGh0o0lMOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBfM:CEGqlkOe2MUVg3vTeKcAEciTBqr3

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-08-05_8e05d8885ed3eccea509bc0119bb559b_goldeneye
- Size
  
  372KB
- MD5
  
  8e05d8885ed3eccea509bc0119bb559b
- SHA1
  
  c8a5cf2e6828b25c151952acc70b4fd1a68bfb0e
- SHA256
  
  562b0fa87403e752d7216721bcb2f54e96fb42b061b51cdbab7defa313ec5e9b
- SHA512
  
  907b13e4eae0aaf9275a7928255ce810a8330d7fcac80cb5b005e4e9bf70cdbcbef9abc58913a00b371657d6a3b26174fd54ffa2d7a1f77547c80f3eede534a7
- SSDEEP
  
  3072:CEGh0o0lMOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBfM:CEGqlkOe2MUVg3vTeKcAEciTBqr3
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence