ca28e1ad65ad5558ba324da403b8c548fc79651f35435d6b6322e7a76b01c0af | Triage

Sharing

General

Target

cfc288e04db2f9a4fe930706675486f0_NEIKI
Size

454KB
Sample

240508-e4qataag4w
MD5

cfc288e04db2f9a4fe930706675486f0
SHA1

4f0e5997e1edc77612a59892d2de7334cffe02ba
SHA256

ca28e1ad65ad5558ba324da403b8c548fc79651f35435d6b6322e7a76b01c0af
SHA512

72ed4d42635c9e46e2e721ed862e6af383ab680b9c96456286ed0aaf370994ce1060c1a3bdfd374b2dc649d8452360bd33865b6cff504204bf1074aa9073a54f
SSDEEP

12288:4jauDReWXUfbiBrQ7JsXfswWz3MfQ+j6l2F9nE4GAlz+Jr2:4DDDuOBqJsX3WgfQPl2F9nE4GAUB2

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  cfc288e04db2f9a4fe930706675486f0_NEIKI
- Size
  
  454KB
- MD5
  
  cfc288e04db2f9a4fe930706675486f0
- SHA1
  
  4f0e5997e1edc77612a59892d2de7334cffe02ba
- SHA256
  
  ca28e1ad65ad5558ba324da403b8c548fc79651f35435d6b6322e7a76b01c0af
- SHA512
  
  72ed4d42635c9e46e2e721ed862e6af383ab680b9c96456286ed0aaf370994ce1060c1a3bdfd374b2dc649d8452360bd33865b6cff504204bf1074aa9073a54f
- SSDEEP
  
  12288:4jauDReWXUfbiBrQ7JsXfswWz3MfQ+j6l2F9nE4GAlz+Jr2:4DDDuOBqJsX3WgfQPl2F9nE4GAUB2
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2