8a17acf30283c79edfbd89ecebcc6917237643e3e30a25c216130eba5e651c30 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4111ac58894a91763191e53b92505a60_NEIKI
Size

90KB
Sample

240507-1kv8lscb69
MD5

4111ac58894a91763191e53b92505a60
SHA1

8bf9ba83c45775d25b725ef3ba490b5a0ac654ed
SHA256

8a17acf30283c79edfbd89ecebcc6917237643e3e30a25c216130eba5e651c30
SHA512

60e04cfa0b438b1eef016ef5de64c9c02d94e32c6d6129ed0146bea5ba6c88a435c2c1fd2a6bd79ce24208e587cec4bcb6d194b08b498c415eba1c8fa7fc00b3
SSDEEP

768:Qvw9816vhKQLroC4/wQRNrfrunMxVFA3b7glws:YEGh0oCl2unMxVS3Hgz

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4111ac58894a91763191e53b92505a60_NEIKI
- Size
  
  90KB
- MD5
  
  4111ac58894a91763191e53b92505a60
- SHA1
  
  8bf9ba83c45775d25b725ef3ba490b5a0ac654ed
- SHA256
  
  8a17acf30283c79edfbd89ecebcc6917237643e3e30a25c216130eba5e651c30
- SHA512
  
  60e04cfa0b438b1eef016ef5de64c9c02d94e32c6d6129ed0146bea5ba6c88a435c2c1fd2a6bd79ce24208e587cec4bcb6d194b08b498c415eba1c8fa7fc00b3
- SSDEEP
  
  768:Qvw9816vhKQLroC4/wQRNrfrunMxVFA3b7glws:YEGh0oCl2unMxVS3Hgz
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2