4727c7673a09808f86857badd41fd1aafad23160fe941660b55721c9f0197f81 | Triage

Sharing

General

Target

2024-09-15_c3b2a327060de7bc2385784b0a4a24ab_goldeneye
Size

372KB
Sample

240915-ed1nvsvblk
MD5

c3b2a327060de7bc2385784b0a4a24ab
SHA1

8d6065a96394f3be52d82ce5f482087115f09715
SHA256

4727c7673a09808f86857badd41fd1aafad23160fe941660b55721c9f0197f81
SHA512

8c4b0dc8221cb86417958cac25b6f19710b2d7999b5c60358a9a75a370066143ce03d6f676563858f6be742d5d933a02ba582a23492038a6702bdf28bafe02c4
SSDEEP

3072:CEGh0oCmlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEGZl/Oe2MUVg3vTeKcAEciTBqr3

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-15_c3b2a327060de7bc2385784b0a4a24ab_goldeneye
- Size
  
  372KB
- MD5
  
  c3b2a327060de7bc2385784b0a4a24ab
- SHA1
  
  8d6065a96394f3be52d82ce5f482087115f09715
- SHA256
  
  4727c7673a09808f86857badd41fd1aafad23160fe941660b55721c9f0197f81
- SHA512
  
  8c4b0dc8221cb86417958cac25b6f19710b2d7999b5c60358a9a75a370066143ce03d6f676563858f6be742d5d933a02ba582a23492038a6702bdf28bafe02c4
- SSDEEP
  
  3072:CEGh0oCmlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEGZl/Oe2MUVg3vTeKcAEciTBqr3
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence