d4acc21c9e844bdcc74210534d3de2a48cd99b39a83f34071a8a2e050e283228 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-12_7b62d5cdfebc48f84460bac35e574cea_goldeneye
Size

216KB
Sample

241012-lqbzlayemq
MD5

7b62d5cdfebc48f84460bac35e574cea
SHA1

d28fa40d64aa76c9dc311102e6ef237bfc11fee7
SHA256

d4acc21c9e844bdcc74210534d3de2a48cd99b39a83f34071a8a2e050e283228
SHA512

b5432d81511295612ea4e5d6b2aa88df9388cbad7965d030c2511ebf596a7a351ad1cd979f0b37237a4b5a2040f935232eaf3a6b656bce5b10f3128b4d7c46db
SSDEEP

3072:jEGh0oHl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGFlEeKcAEcGy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-12_7b62d5cdfebc48f84460bac35e574cea_goldeneye
- Size
  
  216KB
- MD5
  
  7b62d5cdfebc48f84460bac35e574cea
- SHA1
  
  d28fa40d64aa76c9dc311102e6ef237bfc11fee7
- SHA256
  
  d4acc21c9e844bdcc74210534d3de2a48cd99b39a83f34071a8a2e050e283228
- SHA512
  
  b5432d81511295612ea4e5d6b2aa88df9388cbad7965d030c2511ebf596a7a351ad1cd979f0b37237a4b5a2040f935232eaf3a6b656bce5b10f3128b4d7c46db
- SSDEEP
  
  3072:jEGh0oHl+Oso7ie+rcC4F0fJGRIS8Rfd7eQEcGcrcMUy:jEGFlEeKcAEcGy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence