a1a7a7a626fa55a68a068a53d8d54f455a91584964e3e8e8a413cfee69b5f17b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-15_6aafc598f2f001a2357ccd461212205c_goldeneye
Size

180KB
Sample

240915-d4bxratflr
MD5

6aafc598f2f001a2357ccd461212205c
SHA1

1138e184ea4cc8461fb8d27109ff60f3870820c2
SHA256

a1a7a7a626fa55a68a068a53d8d54f455a91584964e3e8e8a413cfee69b5f17b
SHA512

390dfbd8b6c0e15524ae5d2094e039a666818716c4e27d89c1fd34f200b5bfd3742b3e691ed25c9bb1f509d1259e8c592b02d10d1d6c5dc565c6b7ae64d3e52a
SSDEEP

3072:jEGh0oFlfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGXl5eKcAEc

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-15_6aafc598f2f001a2357ccd461212205c_goldeneye
- Size
  
  180KB
- MD5
  
  6aafc598f2f001a2357ccd461212205c
- SHA1
  
  1138e184ea4cc8461fb8d27109ff60f3870820c2
- SHA256
  
  a1a7a7a626fa55a68a068a53d8d54f455a91584964e3e8e8a413cfee69b5f17b
- SHA512
  
  390dfbd8b6c0e15524ae5d2094e039a666818716c4e27d89c1fd34f200b5bfd3742b3e691ed25c9bb1f509d1259e8c592b02d10d1d6c5dc565c6b7ae64d3e52a
- SSDEEP
  
  3072:jEGh0oFlfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGXl5eKcAEc
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence