fc89de18632cda35e8ba70a93a19ea3fb04fb734169bc704371e5dcc8c55d057 | Triage

Sharing

General

Target

2024-09-13_1b8e72116f8b31fd62aa3fdaf659dd2e_goldeneye
Size

344KB
Sample

240913-t968vaxhkf
MD5

1b8e72116f8b31fd62aa3fdaf659dd2e
SHA1

eb2cc04ba9b56124ac79ba2a2576b1445d76d622
SHA256

fc89de18632cda35e8ba70a93a19ea3fb04fb734169bc704371e5dcc8c55d057
SHA512

d5d80d887812d4f59ece1336bfe82d0d6817c514bb2b7ec55b11f7e0275980c9f74a92d2fe1ad6b221f3f838ab8cab3c2d2e9292de51e00cbdd741b31a0b921c
SSDEEP

3072:mEGh0oDlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGZlqOe2MUVg3v2IneKcAEcA

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-13_1b8e72116f8b31fd62aa3fdaf659dd2e_goldeneye
- Size
  
  344KB
- MD5
  
  1b8e72116f8b31fd62aa3fdaf659dd2e
- SHA1
  
  eb2cc04ba9b56124ac79ba2a2576b1445d76d622
- SHA256
  
  fc89de18632cda35e8ba70a93a19ea3fb04fb734169bc704371e5dcc8c55d057
- SHA512
  
  d5d80d887812d4f59ece1336bfe82d0d6817c514bb2b7ec55b11f7e0275980c9f74a92d2fe1ad6b221f3f838ab8cab3c2d2e9292de51e00cbdd741b31a0b921c
- SSDEEP
  
  3072:mEGh0oDlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGZlqOe2MUVg3v2IneKcAEcA
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence