556e04cd1a93577543dbe66c07ee8e826f07efcb17e0050d34838e1f7a0e8bb9 | Triage

Sharing

General

Target

2024-10-01_583e131dc564f0999013a64a9650035a_goldeneye
Size

180KB
Sample

241001-hkb6mawcqk
MD5

583e131dc564f0999013a64a9650035a
SHA1

a8d4d870e0a7906a71d75b23c78ac49be090419c
SHA256

556e04cd1a93577543dbe66c07ee8e826f07efcb17e0050d34838e1f7a0e8bb9
SHA512

c2f6adc683a5b1573c5184c94ed0083d827b2628386ebe3733534564b5aed4ef6287cdad9aefcd83b0fc6f2b56c517b356d210cf1800f66233d11730f460ab0b
SSDEEP

3072:jEGh0oolfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGal5eKcAEc

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-01_583e131dc564f0999013a64a9650035a_goldeneye
- Size
  
  180KB
- MD5
  
  583e131dc564f0999013a64a9650035a
- SHA1
  
  a8d4d870e0a7906a71d75b23c78ac49be090419c
- SHA256
  
  556e04cd1a93577543dbe66c07ee8e826f07efcb17e0050d34838e1f7a0e8bb9
- SHA512
  
  c2f6adc683a5b1573c5184c94ed0083d827b2628386ebe3733534564b5aed4ef6287cdad9aefcd83b0fc6f2b56c517b356d210cf1800f66233d11730f460ab0b
- SSDEEP
  
  3072:jEGh0oolfOso7ie+rcC4F0fJGRIS8Rfd7eQEcGcr:jEGal5eKcAEc
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence