344780c39dcf461c81e22e47c97f2a42cdf3ed83d1e7a0b6ffc067b8e95a51f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-29_667e0631209aa0266d4f4b478b552f3d_goldeneye
Size

216KB
Sample

240929-xkt4rszdme
MD5

667e0631209aa0266d4f4b478b552f3d
SHA1

0d03481b408f0f661ffec2edfd3df43aba4d99fb
SHA256

344780c39dcf461c81e22e47c97f2a42cdf3ed83d1e7a0b6ffc067b8e95a51f0
SHA512

bbc204bed891489c8630cca1edddf08e0e46b70cb08a2d8cfc40e65d28f9e793501c0b2f83fcba33ef1a48f791b9799e036645ba2c30f89d29fc5f6284394a0d
SSDEEP

3072:jEGh0oKl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEG0lEeKcAEcGy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-29_667e0631209aa0266d4f4b478b552f3d_goldeneye
- Size
  
  216KB
- MD5
  
  667e0631209aa0266d4f4b478b552f3d
- SHA1
  
  0d03481b408f0f661ffec2edfd3df43aba4d99fb
- SHA256
  
  344780c39dcf461c81e22e47c97f2a42cdf3ed83d1e7a0b6ffc067b8e95a51f0
- SHA512
  
  bbc204bed891489c8630cca1edddf08e0e46b70cb08a2d8cfc40e65d28f9e793501c0b2f83fcba33ef1a48f791b9799e036645ba2c30f89d29fc5f6284394a0d
- SSDEEP
  
  3072:jEGh0oKl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEG0lEeKcAEcGy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence