5bb7440516e3b3731f369d1f59ca931ed70b5b39046be256c9f580ec3fc47687 | Triage

Sharing

General

Target

2024-08-06_b02982e3a826bf6946efc2eb03968696_goldeneye
Size

197KB
Sample

240806-p9sm8szdmr
MD5

b02982e3a826bf6946efc2eb03968696
SHA1

dfda6caca85bef49937bfb2a00535d3fe49a4390
SHA256

5bb7440516e3b3731f369d1f59ca931ed70b5b39046be256c9f580ec3fc47687
SHA512

54af5a1c71dbfccbf5b710459a69cc121dec6398509e69b52b1f1fdb6f39b5f1dd76446ddd599b595bdedc80512763a2e0ec4643c88af9e01fd48e773523e7e9
SSDEEP

3072:jEGh0oql+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGElEeKcAEca

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-08-06_b02982e3a826bf6946efc2eb03968696_goldeneye
- Size
  
  197KB
- MD5
  
  b02982e3a826bf6946efc2eb03968696
- SHA1
  
  dfda6caca85bef49937bfb2a00535d3fe49a4390
- SHA256
  
  5bb7440516e3b3731f369d1f59ca931ed70b5b39046be256c9f580ec3fc47687
- SHA512
  
  54af5a1c71dbfccbf5b710459a69cc121dec6398509e69b52b1f1fdb6f39b5f1dd76446ddd599b595bdedc80512763a2e0ec4643c88af9e01fd48e773523e7e9
- SSDEEP
  
  3072:jEGh0oql+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGElEeKcAEca
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence