47cb6de8fe6ec35bb04657c36a2f0b3c3aca53e696010eaa0c9e617c8250d378 | Triage

Sharing

General

Target

bec673c7d428b7c424eb6e5fad557be0_NEIKI
Size

63KB
Sample

240508-d65mvabc79
MD5

bec673c7d428b7c424eb6e5fad557be0
SHA1

6c8fb20713d8be209f8a31d30e65dc08e46ae764
SHA256

47cb6de8fe6ec35bb04657c36a2f0b3c3aca53e696010eaa0c9e617c8250d378
SHA512

6593be74697de148f0c0f464e284b340563cf1e2881186c8ef52114f16134be73f228f7db3e4fac3d0490179e0fe38b01a8717ec4a261127ffafe69611373b2d
SSDEEP

1536:t9drxynLVLcGjkqjhylO3O40yy5syH1juIZo:t9drMJL/zisyH1juIZo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bec673c7d428b7c424eb6e5fad557be0_NEIKI
- Size
  
  63KB
- MD5
  
  bec673c7d428b7c424eb6e5fad557be0
- SHA1
  
  6c8fb20713d8be209f8a31d30e65dc08e46ae764
- SHA256
  
  47cb6de8fe6ec35bb04657c36a2f0b3c3aca53e696010eaa0c9e617c8250d378
- SHA512
  
  6593be74697de148f0c0f464e284b340563cf1e2881186c8ef52114f16134be73f228f7db3e4fac3d0490179e0fe38b01a8717ec4a261127ffafe69611373b2d
- SSDEEP
  
  1536:t9drxynLVLcGjkqjhylO3O40yy5syH1juIZo:t9drMJL/zisyH1juIZo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2