6337ffad33b369c6be593ff5447a76c06cf381c1625da01ba7946e399b923303 | Triage

Sharing

General

Target

2024-08-17_3c93b97c5852127e8b42b547b359854e_goldeneye
Size

216KB
Sample

240817-jcfphsxejm
MD5

3c93b97c5852127e8b42b547b359854e
SHA1

b18abe54984b6479963b38339ffce2620d2c775a
SHA256

6337ffad33b369c6be593ff5447a76c06cf381c1625da01ba7946e399b923303
SHA512

c8f732d45d65df424516b1b7a1136248eea7c37e9a85cdddc84426cc32dbf095f722dd5d757bd6deae4e2559114de9ff62bbb16298e098e03fed58fd95b745ff
SSDEEP

3072:jEGh0oSl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGklEeKcAEcGy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-08-17_3c93b97c5852127e8b42b547b359854e_goldeneye
- Size
  
  216KB
- MD5
  
  3c93b97c5852127e8b42b547b359854e
- SHA1
  
  b18abe54984b6479963b38339ffce2620d2c775a
- SHA256
  
  6337ffad33b369c6be593ff5447a76c06cf381c1625da01ba7946e399b923303
- SHA512
  
  c8f732d45d65df424516b1b7a1136248eea7c37e9a85cdddc84426cc32dbf095f722dd5d757bd6deae4e2559114de9ff62bbb16298e098e03fed58fd95b745ff
- SSDEEP
  
  3072:jEGh0oSl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGklEeKcAEcGy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence