aea07c9c3c0976031448316385e7d01c274f08d2f3a9de7546c0b06e80c01a8a | Triage

Sharing

General

Target

b2a837f7553b824775d905dee1ee3030_NEIKI
Size

74KB
Sample

240508-djzhbahh27
MD5

b2a837f7553b824775d905dee1ee3030
SHA1

c2ca0fdf03432ee77f584279a83ef878ef112577
SHA256

aea07c9c3c0976031448316385e7d01c274f08d2f3a9de7546c0b06e80c01a8a
SHA512

d1ca164ded6d46111292bde89231c23893ee19d08ff5eb2b1ca362a5b068bb05249beca95e9448dfa6c4a07ae7bd8cdc70c7193d9867cda11b4512e9d5a7f505
SSDEEP

1536:38hULVooMIgb+3g3EklLMtG+AH4phhhhhhhhhhhhhhUhhhhhhZHhhhhhhC:Mobgb+3gHlLf+U4j

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b2a837f7553b824775d905dee1ee3030_NEIKI
- Size
  
  74KB
- MD5
  
  b2a837f7553b824775d905dee1ee3030
- SHA1
  
  c2ca0fdf03432ee77f584279a83ef878ef112577
- SHA256
  
  aea07c9c3c0976031448316385e7d01c274f08d2f3a9de7546c0b06e80c01a8a
- SHA512
  
  d1ca164ded6d46111292bde89231c23893ee19d08ff5eb2b1ca362a5b068bb05249beca95e9448dfa6c4a07ae7bd8cdc70c7193d9867cda11b4512e9d5a7f505
- SSDEEP
  
  1536:38hULVooMIgb+3g3EklLMtG+AH4phhhhhhhhhhhhhhUhhhhhhZHhhhhhhC:Mobgb+3gHlLf+U4j
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2