5439ae6f05860eece0c81e5e9a1db03d96abe5e9d172d0e45d4a1586bd62387f | Triage

Sharing

General

Target

6efddd3122fc88500f9b79fbf7152a00_NEIKI
Size

128KB
Sample

240507-3y6mlsfd2w
MD5

6efddd3122fc88500f9b79fbf7152a00
SHA1

3c0ab72f01384ecb9fb3cf59026b66f4733ebedb
SHA256

5439ae6f05860eece0c81e5e9a1db03d96abe5e9d172d0e45d4a1586bd62387f
SHA512

84244c19ada59979b5e7d11d5d7249ad246a50586d8b120143fa212e73975c2f0a236c56af7962c02e2211ce952a2434d167323e4ad3180dad45fb9765ca870e
SSDEEP

3072:CT6ozoDdmB47hKeeA+7DxSvITW/cbFGS9n:CAYsK1AKhCw9n

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6efddd3122fc88500f9b79fbf7152a00_NEIKI
- Size
  
  128KB
- MD5
  
  6efddd3122fc88500f9b79fbf7152a00
- SHA1
  
  3c0ab72f01384ecb9fb3cf59026b66f4733ebedb
- SHA256
  
  5439ae6f05860eece0c81e5e9a1db03d96abe5e9d172d0e45d4a1586bd62387f
- SHA512
  
  84244c19ada59979b5e7d11d5d7249ad246a50586d8b120143fa212e73975c2f0a236c56af7962c02e2211ce952a2434d167323e4ad3180dad45fb9765ca870e
- SSDEEP
  
  3072:CT6ozoDdmB47hKeeA+7DxSvITW/cbFGS9n:CAYsK1AKhCw9n
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2