9fc00ac1b6b338dc7903d67c49e4b0b7645058cce30cd50b49f43c34abdfcdaa | Triage

Sharing

General

Target

2024-10-13_e44c9f66b4ea126bede2a0dc9d85158f_goldeneye
Size

380KB
Sample

241013-vxn26ssgmp
MD5

e44c9f66b4ea126bede2a0dc9d85158f
SHA1

94ba829401c6102035ec82192c01fc8799d01754
SHA256

9fc00ac1b6b338dc7903d67c49e4b0b7645058cce30cd50b49f43c34abdfcdaa
SHA512

1ee9a703f4436da6469c997dbe183829f54b1f1bc2e47190e7684daaf50d4c3c92c6c34bb6535b4a3df5500a10cc8e157e00329afed57875a434a38ded47559c
SSDEEP

3072:mEGh0oQlPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEG+l7Oe2MUVg3v2IneKcAEcARy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-10-13_e44c9f66b4ea126bede2a0dc9d85158f_goldeneye
- Size
  
  380KB
- MD5
  
  e44c9f66b4ea126bede2a0dc9d85158f
- SHA1
  
  94ba829401c6102035ec82192c01fc8799d01754
- SHA256
  
  9fc00ac1b6b338dc7903d67c49e4b0b7645058cce30cd50b49f43c34abdfcdaa
- SHA512
  
  1ee9a703f4436da6469c997dbe183829f54b1f1bc2e47190e7684daaf50d4c3c92c6c34bb6535b4a3df5500a10cc8e157e00329afed57875a434a38ded47559c
- SSDEEP
  
  3072:mEGh0oQlPOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGw:mEG+l7Oe2MUVg3v2IneKcAEcARy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence