f886200b767697f062a41c47ce3bf0f4afaf95075a551fed02742fbd9cc78acc | Triage

Sharing

General

Target

2024-09-19_977c6e3221c7e41ac53e6920701758a2_goldeneye
Size

168KB
Sample

240919-elkbvazgmn
MD5

977c6e3221c7e41ac53e6920701758a2
SHA1

350da400d225392dcf4edbb83d18d3a9e0c92a58
SHA256

f886200b767697f062a41c47ce3bf0f4afaf95075a551fed02742fbd9cc78acc
SHA512

50ff50a5e287e109bc0ccfbb7dd3c761496eb12f9faff78c3b82027cd604e34b756ee89d451e83247bf648d9acde1a681ce0b0786b1a5ce701e83a5a7969d327
SSDEEP

1536:1EGh0ovlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0ovlqOPOe2MUVg3Ve+rX

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-19_977c6e3221c7e41ac53e6920701758a2_goldeneye
- Size
  
  168KB
- MD5
  
  977c6e3221c7e41ac53e6920701758a2
- SHA1
  
  350da400d225392dcf4edbb83d18d3a9e0c92a58
- SHA256
  
  f886200b767697f062a41c47ce3bf0f4afaf95075a551fed02742fbd9cc78acc
- SHA512
  
  50ff50a5e287e109bc0ccfbb7dd3c761496eb12f9faff78c3b82027cd604e34b756ee89d451e83247bf648d9acde1a681ce0b0786b1a5ce701e83a5a7969d327
- SSDEEP
  
  1536:1EGh0ovlq5IRVhNJ5Qef7BudMeNzVg3Ve+rrS2:1EGh0ovlqOPOe2MUVg3Ve+rX
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence