4c60e517db7c60287fdacec8dd1c3d97fdc223116f19465791deeb4ea8cab007 | Triage

Sharing

General

Target

2024-09-19_5fdd898ccf0508879500bf6b0f2c3e17_goldeneye
Size

197KB
Sample

240919-eg386azcrd
MD5

5fdd898ccf0508879500bf6b0f2c3e17
SHA1

2f4784110b3022e27a615304f0b936fed7f3986f
SHA256

4c60e517db7c60287fdacec8dd1c3d97fdc223116f19465791deeb4ea8cab007
SHA512

e0452e8e7ccfac0c2df1393bb3d6332c18a9ad33fbe933ab9614f25097e0c0ac7f3a71ce92457ac51660336dc0916ca00744e0b0806e78981ba558c0eb5e9e2e
SSDEEP

3072:jEGh0oGl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEG4lEeKcAEca

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-19_5fdd898ccf0508879500bf6b0f2c3e17_goldeneye
- Size
  
  197KB
- MD5
  
  5fdd898ccf0508879500bf6b0f2c3e17
- SHA1
  
  2f4784110b3022e27a615304f0b936fed7f3986f
- SHA256
  
  4c60e517db7c60287fdacec8dd1c3d97fdc223116f19465791deeb4ea8cab007
- SHA512
  
  e0452e8e7ccfac0c2df1393bb3d6332c18a9ad33fbe933ab9614f25097e0c0ac7f3a71ce92457ac51660336dc0916ca00744e0b0806e78981ba558c0eb5e9e2e
- SSDEEP
  
  3072:jEGh0oGl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEG4lEeKcAEca
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence