75acc2624444267e0a823f8aacf22a3a1b8a5e11d3730f2979f6f70166030ca3 | Triage

Sharing

General

Target

78662fb9054fdaf118fe79f7a42fa4a0_NEIKI
Size

219KB
Sample

240508-2axt5aaf6t
MD5

78662fb9054fdaf118fe79f7a42fa4a0
SHA1

46db3878415262dddc77cbbf74cad004bd397cfc
SHA256

75acc2624444267e0a823f8aacf22a3a1b8a5e11d3730f2979f6f70166030ca3
SHA512

6933d07f83a246fe75d3b399e417944cf6903012d6d2bb0bf3cbce892f964f332686b3d64fbaa30294a2a6eaba38178dae99c0e155509dbe15d1d36e5c88104d
SSDEEP

3072:So+CHaZzmDO93DPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:T5H+zmKjzDOO0aDD4PCxdXXwSfYrwB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  78662fb9054fdaf118fe79f7a42fa4a0_NEIKI
- Size
  
  219KB
- MD5
  
  78662fb9054fdaf118fe79f7a42fa4a0
- SHA1
  
  46db3878415262dddc77cbbf74cad004bd397cfc
- SHA256
  
  75acc2624444267e0a823f8aacf22a3a1b8a5e11d3730f2979f6f70166030ca3
- SHA512
  
  6933d07f83a246fe75d3b399e417944cf6903012d6d2bb0bf3cbce892f964f332686b3d64fbaa30294a2a6eaba38178dae99c0e155509dbe15d1d36e5c88104d
- SSDEEP
  
  3072:So+CHaZzmDO93DPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:T5H+zmKjzDOO0aDD4PCxdXXwSfYrwB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2