Overview

overview

10

Static

static

1

URLScan

urlscan

https://github.com/e...

windows11-21h2-x64

10

Resubmissions

01/03/2025, 12:05

250301-n9ewpszxft 10

01/03/2025, 12:02

250301-n7vjda1mv9 8

01/03/2025, 12:00

250301-n6askszwhw 10

01/03/2025, 11:57

250301-n4qe9a1lw5 8

01/03/2025, 11:54

250301-n246mazwby 8

01/03/2025, 11:51

250301-n1j43a1kx6 10

01/03/2025, 11:48

250301-nyxmda1kt4 6

01/03/2025, 11:46

250301-nxbzaa1jz4 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://github.com/enginestein/Virus-Collection/tree/main/Windows/Binaries/Ransomware/GoldenEye

  • Sample

    250301-n1j43a1kx6

Score
10/10
agilenetdefense_evasiondiscoverytrojanupx

Malware Config

Targets

    • Target

      https://github.com/enginestein/Virus-Collection/tree/main/Windows/Binaries/Ransomware/GoldenEye

    Score
    10/10
    agilenetdefense_evasiondiscoverytrojanupx

    • UAC bypass

      defense_evasiontrojan

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

      agilenet

    • Legitimate hosting services abused for malware hosting/C2

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks