415bcc99280f72cdfcc0a6dcf195802c118dc2d31aed18b8ba84b706c9f4fe1b | Triage

Sharing

General

Target

2024-09-19_51bde2fdf4845cf2e8879d44bc28a263_goldeneye
Size

197KB
Sample

240919-q3hp5a1fkc
MD5

51bde2fdf4845cf2e8879d44bc28a263
SHA1

5b1c546ab92c659ecabbb2ccd489d7c6b34674c1
SHA256

415bcc99280f72cdfcc0a6dcf195802c118dc2d31aed18b8ba84b706c9f4fe1b
SHA512

65406e3db538e9021389508b2097819c5bb251878a81b1dd7d9da3884da3d260aa28af04997498b6aeefe1b1fc99098423ffbe53c37da6940da7bcb84dca0157
SSDEEP

3072:jEGh0oTl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGZlEeKcAEca

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-19_51bde2fdf4845cf2e8879d44bc28a263_goldeneye
- Size
  
  197KB
- MD5
  
  51bde2fdf4845cf2e8879d44bc28a263
- SHA1
  
  5b1c546ab92c659ecabbb2ccd489d7c6b34674c1
- SHA256
  
  415bcc99280f72cdfcc0a6dcf195802c118dc2d31aed18b8ba84b706c9f4fe1b
- SHA512
  
  65406e3db538e9021389508b2097819c5bb251878a81b1dd7d9da3884da3d260aa28af04997498b6aeefe1b1fc99098423ffbe53c37da6940da7bcb84dca0157
- SSDEEP
  
  3072:jEGh0oTl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMQ:jEGZlEeKcAEca
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence