51501a3547efdd6fd1c136dab628609cec269649b0dc73b69ba968b5ca6c57b2 | Triage

Sharing

General

Target

2024-09-05_cca048eb7b923d08382dc52a055590c1_goldeneye
Size

380KB
Sample

240905-mble6ayhke
MD5

cca048eb7b923d08382dc52a055590c1
SHA1

6befe52eceebe91da7eb228848310ff10386c3ef
SHA256

51501a3547efdd6fd1c136dab628609cec269649b0dc73b69ba968b5ca6c57b2
SHA512

ce66a497b9e45e7d06f9dfa417ee89221f2d13a37e9e96014e4f6dd3de24ec8630bd5e218c820c8354dfacd4af8a53dd66e4644003ebe3deb1c65b238d3a562d
SSDEEP

3072:mEGh0oflPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGll7Oe2MUVg3v2IneKcAEcARy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-05_cca048eb7b923d08382dc52a055590c1_goldeneye
- Size
  
  380KB
- MD5
  
  cca048eb7b923d08382dc52a055590c1
- SHA1
  
  6befe52eceebe91da7eb228848310ff10386c3ef
- SHA256
  
  51501a3547efdd6fd1c136dab628609cec269649b0dc73b69ba968b5ca6c57b2
- SHA512
  
  ce66a497b9e45e7d06f9dfa417ee89221f2d13a37e9e96014e4f6dd3de24ec8630bd5e218c820c8354dfacd4af8a53dd66e4644003ebe3deb1c65b238d3a562d
- SSDEEP
  
  3072:mEGh0oflPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGll7Oe2MUVg3v2IneKcAEcARy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence