fcbcf120a188de28fdcbe35d73a17d1994a2cb85a4bb53fd5853a834614f2e18 | Triage

Sharing

General

Target

45985d8dacddb7b6ba0f5f1595b912d0_NEIKI
Size

2.7MB
Sample

240507-1tks8scf86
MD5

45985d8dacddb7b6ba0f5f1595b912d0
SHA1

d59eb3be39d114552175bba1f13eaced40b7c104
SHA256

fcbcf120a188de28fdcbe35d73a17d1994a2cb85a4bb53fd5853a834614f2e18
SHA512

7e56fe9b717a3cd9d2c40a2cd491f6ef007d5910f8f84ef580bdfd6fe5b1e1e882ddecca51c8456e339ebfe42037dd0f90b13f5582f6bc6326295a956ed3f384
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB69w4Sx:+R0pI/IQlUoMPdmpSpg4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  45985d8dacddb7b6ba0f5f1595b912d0_NEIKI
- Size
  
  2.7MB
- MD5
  
  45985d8dacddb7b6ba0f5f1595b912d0
- SHA1
  
  d59eb3be39d114552175bba1f13eaced40b7c104
- SHA256
  
  fcbcf120a188de28fdcbe35d73a17d1994a2cb85a4bb53fd5853a834614f2e18
- SHA512
  
  7e56fe9b717a3cd9d2c40a2cd491f6ef007d5910f8f84ef580bdfd6fe5b1e1e882ddecca51c8456e339ebfe42037dd0f90b13f5582f6bc6326295a956ed3f384
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LB69w4Sx:+R0pI/IQlUoMPdmpSpg4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2