f6bba2353609e37ec676731abc4d16e2e7cee697063165ddc7f4fc76481f1197 | Triage

Sharing

General

Target

2024-08-11_91f11c0a7a063566fb715c8737755c71_goldeneye
Size

216KB
Sample

240811-rcf92sxajb
MD5

91f11c0a7a063566fb715c8737755c71
SHA1

9c41b8ffd3c9d1c0b8d3e40054ea26cea6f15db7
SHA256

f6bba2353609e37ec676731abc4d16e2e7cee697063165ddc7f4fc76481f1197
SHA512

4dab8a4fbb67f9e15598a192b4710d6abdaef6fca9dbe3c248582d896b4ceec0748ca398ff998ba58cf2d1840ed7557f21a76d5a87d80f5e75d6d07fcf18b6e1
SSDEEP

3072:jEGh0oWl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGklEeKcAEcGy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-08-11_91f11c0a7a063566fb715c8737755c71_goldeneye
- Size
  
  216KB
- MD5
  
  91f11c0a7a063566fb715c8737755c71
- SHA1
  
  9c41b8ffd3c9d1c0b8d3e40054ea26cea6f15db7
- SHA256
  
  f6bba2353609e37ec676731abc4d16e2e7cee697063165ddc7f4fc76481f1197
- SHA512
  
  4dab8a4fbb67f9e15598a192b4710d6abdaef6fca9dbe3c248582d896b4ceec0748ca398ff998ba58cf2d1840ed7557f21a76d5a87d80f5e75d6d07fcf18b6e1
- SSDEEP
  
  3072:jEGh0oWl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGklEeKcAEcGy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence