ea7827590023928c5d6272e4a27c096cc9ed011be90e37fca00a31ff6cfdd1e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-02_2da0afdbca6400b88f842fab2d1babc1_goldeneye
Size

372KB
Sample

241002-kdy3xswgjp
MD5

2da0afdbca6400b88f842fab2d1babc1
SHA1

120ae016323963c21bb81137587f89a3fec174a6
SHA256

ea7827590023928c5d6272e4a27c096cc9ed011be90e37fca00a31ff6cfdd1e1
SHA512

3e41e1042dde5ce1bee813ddf30ea107de157fe392c01998764e070ea71338e4f099e64b71023a622d8457de569fcbae8dc96425f8fd9d78366fc13e6f80dae7
SSDEEP

3072:CEGh0oAlMOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBfM:CEGulkOe2MUVg3vTeKcAEciTBqr3

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-02_2da0afdbca6400b88f842fab2d1babc1_goldeneye
- Size
  
  372KB
- MD5
  
  2da0afdbca6400b88f842fab2d1babc1
- SHA1
  
  120ae016323963c21bb81137587f89a3fec174a6
- SHA256
  
  ea7827590023928c5d6272e4a27c096cc9ed011be90e37fca00a31ff6cfdd1e1
- SHA512
  
  3e41e1042dde5ce1bee813ddf30ea107de157fe392c01998764e070ea71338e4f099e64b71023a622d8457de569fcbae8dc96425f8fd9d78366fc13e6f80dae7
- SSDEEP
  
  3072:CEGh0oAlMOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBfM:CEGulkOe2MUVg3vTeKcAEciTBqr3
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence