5b8e577d581738e25b896a1c7accf259794374aa84fbad520568dfd847e86d55 | Triage

Sharing

General

Target

2024-11-21_5e596291b07564a1b6692381f7617358_goldeneye
Size

344KB
Sample

241121-enbsgstjam
MD5

5e596291b07564a1b6692381f7617358
SHA1

cf7932c4226ad86be6f86ed213ce648ce0d89b8e
SHA256

5b8e577d581738e25b896a1c7accf259794374aa84fbad520568dfd847e86d55
SHA512

4aa56909f0f90f70bde8486130e114b6dd7eac0d2d85f3cb5526d186bf2d6515a8254b6acef032c67934f3087e638a4065c8605d8ce4f6d373f5650af930ed93
SSDEEP

3072:mEGh0oQlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEG2lqOe2MUVg3v2IneKcAEcA

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  2024-11-21_5e596291b07564a1b6692381f7617358_goldeneye
- Size
  
  344KB
- MD5
  
  5e596291b07564a1b6692381f7617358
- SHA1
  
  cf7932c4226ad86be6f86ed213ce648ce0d89b8e
- SHA256
  
  5b8e577d581738e25b896a1c7accf259794374aa84fbad520568dfd847e86d55
- SHA512
  
  4aa56909f0f90f70bde8486130e114b6dd7eac0d2d85f3cb5526d186bf2d6515a8254b6acef032c67934f3087e638a4065c8605d8ce4f6d373f5650af930ed93
- SSDEEP
  
  3072:mEGh0oQlEOiDOe2MUVg3bHrH/HqOYGb+4QnZZIne+rcC4F0fJGRIS8Rfd7eQEcGL:mEG2lqOe2MUVg3v2IneKcAEcA
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence