e44d40244321c132e20cb2c5cfb0c2b101f10ac28436dbc910365739b128c4e3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-12_bf9b8aa842eab42fd5c9d5ccfa4bac10_goldeneye
Size

168KB
Sample

240912-nxjdcstflk
MD5

bf9b8aa842eab42fd5c9d5ccfa4bac10
SHA1

114a7ce66c8cf6da16b2d843a5ffbe40731d39d0
SHA256

e44d40244321c132e20cb2c5cfb0c2b101f10ac28436dbc910365739b128c4e3
SHA512

6df219f099e96cbc55bde925aad50177f78337c3f5428e4f219f2d7a6f153577584339d5adbd7700b63a538a1a8e1e8f6930e7fef6484d886d0fae3b3b377da5
SSDEEP

1536:1EGh0o0lq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0o0lqOPOe2MUVg3Ve+rX

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-12_bf9b8aa842eab42fd5c9d5ccfa4bac10_goldeneye
- Size
  
  168KB
- MD5
  
  bf9b8aa842eab42fd5c9d5ccfa4bac10
- SHA1
  
  114a7ce66c8cf6da16b2d843a5ffbe40731d39d0
- SHA256
  
  e44d40244321c132e20cb2c5cfb0c2b101f10ac28436dbc910365739b128c4e3
- SHA512
  
  6df219f099e96cbc55bde925aad50177f78337c3f5428e4f219f2d7a6f153577584339d5adbd7700b63a538a1a8e1e8f6930e7fef6484d886d0fae3b3b377da5
- SSDEEP
  
  1536:1EGh0o0lq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0o0lqOPOe2MUVg3Ve+rX
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence