Overview

overview

8

Static

static

7

6e65f50810...KI.exe

windows7-x64

8

6e65f50810...KI.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e65f50810777133df7cc6e393f15660_NEIKI

  • Size

    117KB

  • Sample

    240507-3x354aaa72

  • MD5

    6e65f50810777133df7cc6e393f15660

  • SHA1

    54e733bd32440c7f122bad17ba65923391d2ba99

  • SHA256

    dcb8ed40c023c9a42708b2d3ade7923f9b278169eb51c1230ebdde5ef41144dc

  • SHA512

    d5c607f9a45a036a34c8d8fbaa1b98847eaf26a884447a27e64ebb3b9ec0898d7d3b39c95ba29d805593c79e95a0f5e528bf3c113ea8e66a5f571d3cd6b2d92c

  • SSDEEP

    3072:R9DzKYSP5nfpRrt94MOTHId1WOalUSGAzGLAuuov98m5SSTY:R99ShxhtSH8dyUSP6AuJV89

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      6e65f50810777133df7cc6e393f15660_NEIKI

    • Size

      117KB

    • MD5

      6e65f50810777133df7cc6e393f15660

    • SHA1

      54e733bd32440c7f122bad17ba65923391d2ba99

    • SHA256

      dcb8ed40c023c9a42708b2d3ade7923f9b278169eb51c1230ebdde5ef41144dc

    • SHA512

      d5c607f9a45a036a34c8d8fbaa1b98847eaf26a884447a27e64ebb3b9ec0898d7d3b39c95ba29d805593c79e95a0f5e528bf3c113ea8e66a5f571d3cd6b2d92c

    • SSDEEP

      3072:R9DzKYSP5nfpRrt94MOTHId1WOalUSGAzGLAuuov98m5SSTY:R99ShxhtSH8dyUSP6AuJV89

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks