373ab475e1f0754f412f6454704be63ab90713823b40c17373c36886b789dc0f | Triage

Sharing

General

Target

2024-09-19_d6db1960a12e825d74675e71f9fcff5e_goldeneye
Size

197KB
Sample

240919-eq6ewa1alr
MD5

d6db1960a12e825d74675e71f9fcff5e
SHA1

756bb2e04cbfb3cdb7b52595361800f17d631583
SHA256

373ab475e1f0754f412f6454704be63ab90713823b40c17373c36886b789dc0f
SHA512

ae2847330ad3163e4a648b1252d69bce845bd4426fccb0d7b7795f22622a2faabe20883393df5d21de6010f96939aa7c7587c028fc28335f120db8f0aa28e6a5
SSDEEP

3072:jEGh0oll+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGvlEeKcAEca

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-19_d6db1960a12e825d74675e71f9fcff5e_goldeneye
- Size
  
  197KB
- MD5
  
  d6db1960a12e825d74675e71f9fcff5e
- SHA1
  
  756bb2e04cbfb3cdb7b52595361800f17d631583
- SHA256
  
  373ab475e1f0754f412f6454704be63ab90713823b40c17373c36886b789dc0f
- SHA512
  
  ae2847330ad3163e4a648b1252d69bce845bd4426fccb0d7b7795f22622a2faabe20883393df5d21de6010f96939aa7c7587c028fc28335f120db8f0aa28e6a5
- SSDEEP
  
  3072:jEGh0oll+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGvlEeKcAEca
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence