General

  • Target

    2024-11-12_af9ce71502181d80fcbd2d9811fc45b8_goldeneye

  • Size

    408KB

  • Sample

    241112-rtw2tsvcll

  • MD5

    af9ce71502181d80fcbd2d9811fc45b8

  • SHA1

    742d8920a967df9b996c3cfc92499b04d711175f

  • SHA256

    2fb101b69870436ff893ae5b3212b7a651a529e528d5532c88f1d01590904c48

  • SHA512

    ecfeb219b201932123d2ca7f8b317619d8e4b484a29cf41a9763c4576afa8eda06f5c007d3a2f21cbfebfc409ff4993f6a14fd203db8f1eff2877679ff28b423

  • SSDEEP

    3072:CEGh0o7l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGRldOe2MUVg3vTeKcAEciTBqr3jy

Malware Config

Targets

    • Target

      2024-11-12_af9ce71502181d80fcbd2d9811fc45b8_goldeneye

    • Size

      408KB

    • MD5

      af9ce71502181d80fcbd2d9811fc45b8

    • SHA1

      742d8920a967df9b996c3cfc92499b04d711175f

    • SHA256

      2fb101b69870436ff893ae5b3212b7a651a529e528d5532c88f1d01590904c48

    • SHA512

      ecfeb219b201932123d2ca7f8b317619d8e4b484a29cf41a9763c4576afa8eda06f5c007d3a2f21cbfebfc409ff4993f6a14fd203db8f1eff2877679ff28b423

    • SSDEEP

      3072:CEGh0o7l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEGRldOe2MUVg3vTeKcAEciTBqr3jy

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Deletes itself

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks