44ffdd0752fbee2f5d1ddb63e79bcedd1edc0ccec90a6a758fb7b0d03cfed41a | Triage

Sharing

General

Target

9a63be9011e873d6681eec85f23a4850_NEIKI
Size

160KB
Sample

240508-3hda5afh68
MD5

9a63be9011e873d6681eec85f23a4850
SHA1

f52a1239e643b9399ddb69c24375b99691ef8585
SHA256

44ffdd0752fbee2f5d1ddb63e79bcedd1edc0ccec90a6a758fb7b0d03cfed41a
SHA512

5b5788c5c321c9356e85e44905a36854b48b6105d4b01faee51ee21e88df5075c2189c6b349ce71bb54b2807a19007f772fcb1453e64567c6cf61c07ca5d21ce
SSDEEP

3072:vDmILefbmoT2G7Sj8GomX5VltS2gS1l8BhhGxbek1hAnwbGEUPIWmHbW4qeX:vDDLySL8GomJVl82gglkGxb1taPIrHyO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9a63be9011e873d6681eec85f23a4850_NEIKI
- Size
  
  160KB
- MD5
  
  9a63be9011e873d6681eec85f23a4850
- SHA1
  
  f52a1239e643b9399ddb69c24375b99691ef8585
- SHA256
  
  44ffdd0752fbee2f5d1ddb63e79bcedd1edc0ccec90a6a758fb7b0d03cfed41a
- SHA512
  
  5b5788c5c321c9356e85e44905a36854b48b6105d4b01faee51ee21e88df5075c2189c6b349ce71bb54b2807a19007f772fcb1453e64567c6cf61c07ca5d21ce
- SSDEEP
  
  3072:vDmILefbmoT2G7Sj8GomX5VltS2gS1l8BhhGxbek1hAnwbGEUPIWmHbW4qeX:vDDLySL8GomJVl82gglkGxb1taPIrHyO
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2