4cf87c09b91e60c1a2117b18274ab574432c7ac3466dc6c5da735f9660e37a6e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e1dfcdb8f21ceb463503f036392ed20_NEIKI
Size

175KB
Sample

240508-1av5vsgd4z
MD5

5e1dfcdb8f21ceb463503f036392ed20
SHA1

bfddd524ff8294fccb1acf75f73583ab29af4bbf
SHA256

4cf87c09b91e60c1a2117b18274ab574432c7ac3466dc6c5da735f9660e37a6e
SHA512

2fb7eafd0b59834a2a37454ddc6fcc83d1a2eacfed38d202b8703349a04022bcb00f75b80713e220237194f52b74771f60e68de6dfd90cf87954c1c49820dfc6
SSDEEP

3072:mMPrK9vxnULAK202Gd8pqzX2cZVoL8XJsU4z6Z7kYeKBXAJRxddk/vZ:zP295nKJNGYok4YXeoXkRxk/vZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5e1dfcdb8f21ceb463503f036392ed20_NEIKI
- Size
  
  175KB
- MD5
  
  5e1dfcdb8f21ceb463503f036392ed20
- SHA1
  
  bfddd524ff8294fccb1acf75f73583ab29af4bbf
- SHA256
  
  4cf87c09b91e60c1a2117b18274ab574432c7ac3466dc6c5da735f9660e37a6e
- SHA512
  
  2fb7eafd0b59834a2a37454ddc6fcc83d1a2eacfed38d202b8703349a04022bcb00f75b80713e220237194f52b74771f60e68de6dfd90cf87954c1c49820dfc6
- SSDEEP
  
  3072:mMPrK9vxnULAK202Gd8pqzX2cZVoL8XJsU4z6Z7kYeKBXAJRxddk/vZ:zP295nKJNGYok4YXeoXkRxk/vZ
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2