8356a404d0529fd4606694daf25054769297e9d41588a0f5794507839d702f1c | Triage

Sharing

General

Target

2024-09-13_6fa5506a048cf2db4c0228fb73e138fe_goldeneye
Size

408KB
Sample

240913-jmvanasfjg
MD5

6fa5506a048cf2db4c0228fb73e138fe
SHA1

6af50a917bd39c1d8922cf538bfdc38df9f03c12
SHA256

8356a404d0529fd4606694daf25054769297e9d41588a0f5794507839d702f1c
SHA512

eacce9cdfcc2f56f1faa40a97f041418e9df45d5c04bbf56e5ed4957b589e78000b5bb77c538bb82a74ced9863841f36459628cb2a57e701f1a5958442c573c7
SSDEEP

3072:CEGh0onlXOiGOeUMUVg3bKrH/HqOYGlurcC4F0fJGRIS8Rfd7eQElGcrTuzTBfCn:CEGplWOeUMUVg3IXacAElQTBqrFOyB

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-13_6fa5506a048cf2db4c0228fb73e138fe_goldeneye
- Size
  
  408KB
- MD5
  
  6fa5506a048cf2db4c0228fb73e138fe
- SHA1
  
  6af50a917bd39c1d8922cf538bfdc38df9f03c12
- SHA256
  
  8356a404d0529fd4606694daf25054769297e9d41588a0f5794507839d702f1c
- SHA512
  
  eacce9cdfcc2f56f1faa40a97f041418e9df45d5c04bbf56e5ed4957b589e78000b5bb77c538bb82a74ced9863841f36459628cb2a57e701f1a5958442c573c7
- SSDEEP
  
  3072:CEGh0onlXOiGOeUMUVg3bKrH/HqOYGlurcC4F0fJGRIS8Rfd7eQElGcrTuzTBfCn:CEGplWOeUMUVg3IXacAElQTBqrFOyB
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence