bb1083acc6049b71b281fbbff5ebbc0683515826d3dc2fadfce821e5562aea11 | Triage

Sharing

General

Target

2024-09-30_26e975bec91a0df81506da4aa3abe222_goldeneye
Size

408KB
Sample

240930-kljcfawamk
MD5

26e975bec91a0df81506da4aa3abe222
SHA1

aa42716b91cd3d8f5c6ad12c49a73a04830de962
SHA256

bb1083acc6049b71b281fbbff5ebbc0683515826d3dc2fadfce821e5562aea11
SHA512

b30f30b008fe05aeec4577264a82597e77f2bafb8f56179903fa620903fb3d849dfc9cb205de89bbdbaace1e5000a7ed5dd471398a6bd704e418309398048edc
SSDEEP

3072:CEGh0o4l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGqldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-09-30_26e975bec91a0df81506da4aa3abe222_goldeneye
- Size
  
  408KB
- MD5
  
  26e975bec91a0df81506da4aa3abe222
- SHA1
  
  aa42716b91cd3d8f5c6ad12c49a73a04830de962
- SHA256
  
  bb1083acc6049b71b281fbbff5ebbc0683515826d3dc2fadfce821e5562aea11
- SHA512
  
  b30f30b008fe05aeec4577264a82597e77f2bafb8f56179903fa620903fb3d849dfc9cb205de89bbdbaace1e5000a7ed5dd471398a6bd704e418309398048edc
- SSDEEP
  
  3072:CEGh0o4l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGqldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence