a106ffdb21cc898432833059487005da80ff89081db8fc32571b6de902a66345 | Triage

Sharing

General

Target

d0ea44dcf0fca383026e0cc9c1477180_NEIKI
Size

280KB
Sample

240508-e6ypzaah8v
MD5

d0ea44dcf0fca383026e0cc9c1477180
SHA1

c484ea05bbaf72c582488b6b1f995afd2ac5ba85
SHA256

a106ffdb21cc898432833059487005da80ff89081db8fc32571b6de902a66345
SHA512

1bd88c349317e5838a2f412dedd36a26a34e9e33fda9168c3018c75969de20e5a3e5e49e0786102ab0ddfc25da5b1c480be696f993cd79e714bc94ba92720532
SSDEEP

1536:TGS7xMNm8WdutSUd5kKGktWWAWIcyohseMUKPeoxZslAGhZxPBljjGs8f7hG6q+j:KhWwAU4gA4hZK7xVG9Btj676ZBI

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d0ea44dcf0fca383026e0cc9c1477180_NEIKI
- Size
  
  280KB
- MD5
  
  d0ea44dcf0fca383026e0cc9c1477180
- SHA1
  
  c484ea05bbaf72c582488b6b1f995afd2ac5ba85
- SHA256
  
  a106ffdb21cc898432833059487005da80ff89081db8fc32571b6de902a66345
- SHA512
  
  1bd88c349317e5838a2f412dedd36a26a34e9e33fda9168c3018c75969de20e5a3e5e49e0786102ab0ddfc25da5b1c480be696f993cd79e714bc94ba92720532
- SSDEEP
  
  1536:TGS7xMNm8WdutSUd5kKGktWWAWIcyohseMUKPeoxZslAGhZxPBljjGs8f7hG6q+j:KhWwAU4gA4hZK7xVG9Btj676ZBI
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2