865ae52acfc2edc830bd3721bcc8d93673566f8f57d4eb5f49e919c144ea2659 | Triage

Sharing

General

Target

24b9d3ea98fe84f0f618731e98cc2560_NEIKI
Size

62KB
Sample

240507-y7qwaseb5v
MD5

24b9d3ea98fe84f0f618731e98cc2560
SHA1

604130e2981e33f0591e35a63aed0b545dba2ae0
SHA256

865ae52acfc2edc830bd3721bcc8d93673566f8f57d4eb5f49e919c144ea2659
SHA512

2f9778d15235936b129097b4bf83f82d1562b184e3183c42dfa8ee83405ef3f0c1540d3ac14e913644b1d53597ee2752c15e238b524b8c57d718f002649f140e
SSDEEP

1536:sbHdB9LZEkg0Dn/49RZqAe8SAyuve8Cy:SdB9lLDn/49XeBA3ve8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  24b9d3ea98fe84f0f618731e98cc2560_NEIKI
- Size
  
  62KB
- MD5
  
  24b9d3ea98fe84f0f618731e98cc2560
- SHA1
  
  604130e2981e33f0591e35a63aed0b545dba2ae0
- SHA256
  
  865ae52acfc2edc830bd3721bcc8d93673566f8f57d4eb5f49e919c144ea2659
- SHA512
  
  2f9778d15235936b129097b4bf83f82d1562b184e3183c42dfa8ee83405ef3f0c1540d3ac14e913644b1d53597ee2752c15e238b524b8c57d718f002649f140e
- SSDEEP
  
  1536:sbHdB9LZEkg0Dn/49RZqAe8SAyuve8Cy:SdB9lLDn/49XeBA3ve8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2