18b37c2c5d30841b549e8064c0c28c50de0499f2b761623a11659d8312b2366b | Triage

Sharing

General

Target

2024-10-13_721fca74f2e8c5cf7b81857b84573a0a_goldeneye
Size

380KB
Sample

241013-t6x6rs1clp
MD5

721fca74f2e8c5cf7b81857b84573a0a
SHA1

1097da9102d0cbd1fb92b51378b3920a8d0741ae
SHA256

18b37c2c5d30841b549e8064c0c28c50de0499f2b761623a11659d8312b2366b
SHA512

454a25f61724b4f4c4b4ae79400efb253ac290782dd6bc436f3f64308db0d2edb00f8ddf274b594b992f8fa27647f2244c38d8c55334ea33c4f729eab84736a8
SSDEEP

3072:mEGh0oalPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGcl7Oe2MUVg3v2IneKcAEcARy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-13_721fca74f2e8c5cf7b81857b84573a0a_goldeneye
- Size
  
  380KB
- MD5
  
  721fca74f2e8c5cf7b81857b84573a0a
- SHA1
  
  1097da9102d0cbd1fb92b51378b3920a8d0741ae
- SHA256
  
  18b37c2c5d30841b549e8064c0c28c50de0499f2b761623a11659d8312b2366b
- SHA512
  
  454a25f61724b4f4c4b4ae79400efb253ac290782dd6bc436f3f64308db0d2edb00f8ddf274b594b992f8fa27647f2244c38d8c55334ea33c4f729eab84736a8
- SSDEEP
  
  3072:mEGh0oalPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEGcl7Oe2MUVg3v2IneKcAEcARy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence