ab675432ad8188aa64a7d29e087bb097c8838d278964191054a4942b49bf9c40 | Triage

Sharing

General

Target

2024-09-19_90c945d8c2e8d8d4683b5f267169bf7e_goldeneye
Size

168KB
Sample

240919-ekyg3szeld
MD5

90c945d8c2e8d8d4683b5f267169bf7e
SHA1

b1f3fade190dfa18d592754af34d7cd4d7c9849b
SHA256

ab675432ad8188aa64a7d29e087bb097c8838d278964191054a4942b49bf9c40
SHA512

3ac7e36def208366d6ce8c1a3042399fe4e9d2b996e843b1d22bb3ffd565ccfdf1c8bd916b3910953f875720d77f8f35c960b5a9b2a5ec755f0d654b7d319c13
SSDEEP

1536:1EGh0oXlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0oXlqOPOe2MUVg3Ve+rX

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-19_90c945d8c2e8d8d4683b5f267169bf7e_goldeneye
- Size
  
  168KB
- MD5
  
  90c945d8c2e8d8d4683b5f267169bf7e
- SHA1
  
  b1f3fade190dfa18d592754af34d7cd4d7c9849b
- SHA256
  
  ab675432ad8188aa64a7d29e087bb097c8838d278964191054a4942b49bf9c40
- SHA512
  
  3ac7e36def208366d6ce8c1a3042399fe4e9d2b996e843b1d22bb3ffd565ccfdf1c8bd916b3910953f875720d77f8f35c960b5a9b2a5ec755f0d654b7d319c13
- SSDEEP
  
  1536:1EGh0oXlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0oXlqOPOe2MUVg3Ve+rX
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence