de2a00b71bacb015bc38112a3988987fbda6fe9da3053898d75b0d3d9375733e | Triage

Sharing

General

Target

2024-10-12_3eead2881c1f747f622951ab207e3d6c_goldeneye
Size

408KB
Sample

241012-d2vl3s1bnh
MD5

3eead2881c1f747f622951ab207e3d6c
SHA1

a59f7b499a2c52bc944bc1c640b79c5910ab598c
SHA256

de2a00b71bacb015bc38112a3988987fbda6fe9da3053898d75b0d3d9375733e
SHA512

8e9f12d8a704ec08ef52d69e93697e7333a06114b6d38419937a74f83cd0e9803c89232d8376482b152521a657d5745916804ad30bd6c5cb2561b4a678a7ad8e
SSDEEP

3072:CEGh0o5l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGHldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-12_3eead2881c1f747f622951ab207e3d6c_goldeneye
- Size
  
  408KB
- MD5
  
  3eead2881c1f747f622951ab207e3d6c
- SHA1
  
  a59f7b499a2c52bc944bc1c640b79c5910ab598c
- SHA256
  
  de2a00b71bacb015bc38112a3988987fbda6fe9da3053898d75b0d3d9375733e
- SHA512
  
  8e9f12d8a704ec08ef52d69e93697e7333a06114b6d38419937a74f83cd0e9803c89232d8376482b152521a657d5745916804ad30bd6c5cb2561b4a678a7ad8e
- SSDEEP
  
  3072:CEGh0o5l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGHldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence