1a19ff7daa4fc7bbd50f557a2b1edfecbd449443405438b98f5f61203a3d4f28 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-12_5ba65f7f6caefd450965cadf0fb93383_goldeneye
Size

344KB
Sample

240812-ms9t3sxepr
MD5

5ba65f7f6caefd450965cadf0fb93383
SHA1

d620987113347a3c6d4fdcd15f846861e521f317
SHA256

1a19ff7daa4fc7bbd50f557a2b1edfecbd449443405438b98f5f61203a3d4f28
SHA512

896edcdd2e32d55a11aaac45cf3562344af0ada57827a45e882feb640ae3e924bdffd6dcfa1e119912259fdaf0219cf2ea8c8d9c961fcd7e22790db4dc461ee0
SSDEEP

3072:mEGh0oXlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGxlqOe2MUVg3v2IneKcAEcA

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-08-12_5ba65f7f6caefd450965cadf0fb93383_goldeneye
- Size
  
  344KB
- MD5
  
  5ba65f7f6caefd450965cadf0fb93383
- SHA1
  
  d620987113347a3c6d4fdcd15f846861e521f317
- SHA256
  
  1a19ff7daa4fc7bbd50f557a2b1edfecbd449443405438b98f5f61203a3d4f28
- SHA512
  
  896edcdd2e32d55a11aaac45cf3562344af0ada57827a45e882feb640ae3e924bdffd6dcfa1e119912259fdaf0219cf2ea8c8d9c961fcd7e22790db4dc461ee0
- SSDEEP
  
  3072:mEGh0oXlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGxlqOe2MUVg3v2IneKcAEcA
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence