8cac4cf5b54913686d919787ec3adc2a353b1314636482746bb7c93ee06d1c98 | Triage

Sharing

General

Target

f8b07bad7db22d0c641c54172ccc5370_NEIKI
Size

297KB
Sample

240508-har44afc9z
MD5

f8b07bad7db22d0c641c54172ccc5370
SHA1

34b5f50d6ba0a5153921b33258d943ad0ecea05d
SHA256

8cac4cf5b54913686d919787ec3adc2a353b1314636482746bb7c93ee06d1c98
SHA512

5da7c49f2a5566bec247e8f9f56e6f1861d0c01c0fbfbf1132f351014faa4f43ac10b19f8423271151bed821f60485b85365c831bf474d3909264bed0f05a9cd
SSDEEP

6144:wlj7cMnC+OEXtIQqeHdA51d18T+G0QXMW30gPTB5/uwq:wlbC+NaKYE5Tf/K

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f8b07bad7db22d0c641c54172ccc5370_NEIKI
- Size
  
  297KB
- MD5
  
  f8b07bad7db22d0c641c54172ccc5370
- SHA1
  
  34b5f50d6ba0a5153921b33258d943ad0ecea05d
- SHA256
  
  8cac4cf5b54913686d919787ec3adc2a353b1314636482746bb7c93ee06d1c98
- SHA512
  
  5da7c49f2a5566bec247e8f9f56e6f1861d0c01c0fbfbf1132f351014faa4f43ac10b19f8423271151bed821f60485b85365c831bf474d3909264bed0f05a9cd
- SSDEEP
  
  6144:wlj7cMnC+OEXtIQqeHdA51d18T+G0QXMW30gPTB5/uwq:wlbC+NaKYE5Tf/K
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2