5b898efa75fe8703207ea02bed354e3172f3b2c16252091b6dc210dd455e37e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-02_685ac25837335e2d2f76d2eb78655cc2_goldeneye
Size

380KB
Sample

240902-g8j1pstgrr
MD5

685ac25837335e2d2f76d2eb78655cc2
SHA1

b3395d3028d3e96f04afe21be5bf557df4bf910a
SHA256

5b898efa75fe8703207ea02bed354e3172f3b2c16252091b6dc210dd455e37e1
SHA512

374d35e55c12e16ef302aadf1e358d700058cf0b0dda0a773908d10767e6e80e3c9579974eebfd19695131a022f3e2059978b841e150da8fc75d27a7c5b8301e
SSDEEP

3072:mEGh0oDlPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGRl7Oe2MUVg3v2IneKcAEcARy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-02_685ac25837335e2d2f76d2eb78655cc2_goldeneye
- Size
  
  380KB
- MD5
  
  685ac25837335e2d2f76d2eb78655cc2
- SHA1
  
  b3395d3028d3e96f04afe21be5bf557df4bf910a
- SHA256
  
  5b898efa75fe8703207ea02bed354e3172f3b2c16252091b6dc210dd455e37e1
- SHA512
  
  374d35e55c12e16ef302aadf1e358d700058cf0b0dda0a773908d10767e6e80e3c9579974eebfd19695131a022f3e2059978b841e150da8fc75d27a7c5b8301e
- SSDEEP
  
  3072:mEGh0oDlPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGRl7Oe2MUVg3v2IneKcAEcARy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence