8bf7067fac31c2ccdac94dcb32abcb3b5b75acbe2ad5265d9673be1e1e6ec7d8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-05_18f5c4f2658d54de57a890bde395631e_goldeneye
Size

344KB
Sample

241005-lskdrasfrc
MD5

18f5c4f2658d54de57a890bde395631e
SHA1

11717d1ebc7e2d41723f3af3ce0c67c378aba0b8
SHA256

8bf7067fac31c2ccdac94dcb32abcb3b5b75acbe2ad5265d9673be1e1e6ec7d8
SHA512

f3389819174e6008358ff31b7aee176585e6629d1041fdfe216bd909d4176f427feac029a8394bbf5515bf15097bb0e1b2cdc4880602f85b466971cbe0a4b70c
SSDEEP

3072:mEGh0ohlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGPlqOe2MUVg3v2IneKcAEcA

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-05_18f5c4f2658d54de57a890bde395631e_goldeneye
- Size
  
  344KB
- MD5
  
  18f5c4f2658d54de57a890bde395631e
- SHA1
  
  11717d1ebc7e2d41723f3af3ce0c67c378aba0b8
- SHA256
  
  8bf7067fac31c2ccdac94dcb32abcb3b5b75acbe2ad5265d9673be1e1e6ec7d8
- SHA512
  
  f3389819174e6008358ff31b7aee176585e6629d1041fdfe216bd909d4176f427feac029a8394bbf5515bf15097bb0e1b2cdc4880602f85b466971cbe0a4b70c
- SSDEEP
  
  3072:mEGh0ohlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEGPlqOe2MUVg3v2IneKcAEcA
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence