ec4e5b9cefd34f4b8716b2552e6d3c211ffccbac8d4892c6db546084cb9134ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-29_64bfe6788db6d9cde39f100bbffbf616_goldeneye
Size

408KB
Sample

240829-kjxr2ssbre
MD5

64bfe6788db6d9cde39f100bbffbf616
SHA1

e6422fc77e44181e4a82c689981f20f1d74b085d
SHA256

ec4e5b9cefd34f4b8716b2552e6d3c211ffccbac8d4892c6db546084cb9134ae
SHA512

9542d9425a6b94c1a0366421c12f2760bcbb71db8d0bc269e229151c037efc21569031a45f2035cc7086ec188cfec4a1c931d81d4a3fd1553729de85d947c133
SSDEEP

3072:CEGh0obl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGVldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-08-29_64bfe6788db6d9cde39f100bbffbf616_goldeneye
- Size
  
  408KB
- MD5
  
  64bfe6788db6d9cde39f100bbffbf616
- SHA1
  
  e6422fc77e44181e4a82c689981f20f1d74b085d
- SHA256
  
  ec4e5b9cefd34f4b8716b2552e6d3c211ffccbac8d4892c6db546084cb9134ae
- SHA512
  
  9542d9425a6b94c1a0366421c12f2760bcbb71db8d0bc269e229151c037efc21569031a45f2035cc7086ec188cfec4a1c931d81d4a3fd1553729de85d947c133
- SSDEEP
  
  3072:CEGh0obl3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGVldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence