d380a08fcc84d5d8dd0a254cd22adef1af30c9f2967820abda3c703d54e20db2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a147f06f25ed6782d686b811e60ee30_NEIKI
Size

624KB
Sample

240507-12hc3sac91
MD5

4a147f06f25ed6782d686b811e60ee30
SHA1

3c3e7b4ff1f5096cacbaecdb9197592b5b5a5f9f
SHA256

d380a08fcc84d5d8dd0a254cd22adef1af30c9f2967820abda3c703d54e20db2
SHA512

7c4a9c272d9fd69f5ff9a81dabefcc5d9e6fada96832487b013246975642afd24dc3af18e8409e8e60981ee8553d4559bff6ad73b98e3674428d5c748a13e7f0
SSDEEP

12288:fAjuakTOfDlEU4HWDblFlOTPThN4ax26Lp2BIkK:Iu/OfDlEUKWflmTP34axtpiIkK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4a147f06f25ed6782d686b811e60ee30_NEIKI
- Size
  
  624KB
- MD5
  
  4a147f06f25ed6782d686b811e60ee30
- SHA1
  
  3c3e7b4ff1f5096cacbaecdb9197592b5b5a5f9f
- SHA256
  
  d380a08fcc84d5d8dd0a254cd22adef1af30c9f2967820abda3c703d54e20db2
- SHA512
  
  7c4a9c272d9fd69f5ff9a81dabefcc5d9e6fada96832487b013246975642afd24dc3af18e8409e8e60981ee8553d4559bff6ad73b98e3674428d5c748a13e7f0
- SSDEEP
  
  12288:fAjuakTOfDlEU4HWDblFlOTPThN4ax26Lp2BIkK:Iu/OfDlEUKWflmTP34axtpiIkK
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2