2b7406ea7518d6334b6defe0e09030d25304cc7a70fb33b4ab013dba4b4060a1 | Triage

Sharing

General

Target

27bbc9955db99b41074407438ed5dd60_NEIKI
Size

45KB
Sample

240507-zb32esed9z
MD5

27bbc9955db99b41074407438ed5dd60
SHA1

2f78bbc0e55bbd2960d9605eadf8c276a2c93044
SHA256

2b7406ea7518d6334b6defe0e09030d25304cc7a70fb33b4ab013dba4b4060a1
SHA512

5592e1855e30041039c77695426341598b8d5fbd46895f31d82b630fe6c52968e0fc9fb3d07eb3c37c350447cbc7b18515aba73239b4377f287c2cc3183242fc
SSDEEP

768:m20H9NZFpo/k9OcbRgv23OFJIuclbiatj7Aqrt/1H5kL:oHb3p6re3OZcluatvAqrn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  27bbc9955db99b41074407438ed5dd60_NEIKI
- Size
  
  45KB
- MD5
  
  27bbc9955db99b41074407438ed5dd60
- SHA1
  
  2f78bbc0e55bbd2960d9605eadf8c276a2c93044
- SHA256
  
  2b7406ea7518d6334b6defe0e09030d25304cc7a70fb33b4ab013dba4b4060a1
- SHA512
  
  5592e1855e30041039c77695426341598b8d5fbd46895f31d82b630fe6c52968e0fc9fb3d07eb3c37c350447cbc7b18515aba73239b4377f287c2cc3183242fc
- SSDEEP
  
  768:m20H9NZFpo/k9OcbRgv23OFJIuclbiatj7Aqrt/1H5kL:oHb3p6re3OZcluatvAqrn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2