84b1202d0a20396fe14d2da0ce65767d6ea858b10aa41d19e616b34fd622c6bb | Triage

Sharing

General

Target

f44b952e433341ab351dc073a8a330a0_NEIKI
Size

96KB
Sample

240508-g3hwfseh5y
MD5

f44b952e433341ab351dc073a8a330a0
SHA1

95ebf3e3865842229f7cfc9cc6f5b4b91776719c
SHA256

84b1202d0a20396fe14d2da0ce65767d6ea858b10aa41d19e616b34fd622c6bb
SHA512

b8bf61d22ef73d9e67ac94c98f22832db5209ef1a8acb9f5558b6bda497043c83b034bfd43f80a454d480ff8f03e5981929167c75866a53f24b596fdc3ce445d
SSDEEP

1536:k9W4Swc2evMi2Y2knhczya8oXm4NCBYajUABmkP6Mq7rllqUOcyoh/NR4+G:eW4jJevMiUknaf9XmFBxjUSmkCMQ/9hO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f44b952e433341ab351dc073a8a330a0_NEIKI
- Size
  
  96KB
- MD5
  
  f44b952e433341ab351dc073a8a330a0
- SHA1
  
  95ebf3e3865842229f7cfc9cc6f5b4b91776719c
- SHA256
  
  84b1202d0a20396fe14d2da0ce65767d6ea858b10aa41d19e616b34fd622c6bb
- SHA512
  
  b8bf61d22ef73d9e67ac94c98f22832db5209ef1a8acb9f5558b6bda497043c83b034bfd43f80a454d480ff8f03e5981929167c75866a53f24b596fdc3ce445d
- SSDEEP
  
  1536:k9W4Swc2evMi2Y2knhczya8oXm4NCBYajUABmkP6Mq7rllqUOcyoh/NR4+G:eW4jJevMiUknaf9XmFBxjUSmkCMQ/9hO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2