98794aedf6c8f8f2d911150a476c78615710a745787ba8fe2bcc38881dc09437 | Triage

Sharing

General

Target

fdd6b5351017916776ed05883990b0a0_NEIKI
Size

96KB
Sample

240508-hle9nsae63
MD5

fdd6b5351017916776ed05883990b0a0
SHA1

1b9302b36046c68b867385d2373d67ae3a5d5f35
SHA256

98794aedf6c8f8f2d911150a476c78615710a745787ba8fe2bcc38881dc09437
SHA512

e566aa64fbfd39cc43566ae754fe731e7c32430283c6b8aae22bdd3947e4c71e28051ac60f93e857f33a571f5f02f675ed7c2b56415077412fe13425d9820f04
SSDEEP

1536:K9N/LAzsLcdBsKhgxg/SuHJfby842LEZS/FCb4noaJSNzJO/:K9RwkKhgpuBEZSs4noakXO/

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fdd6b5351017916776ed05883990b0a0_NEIKI
- Size
  
  96KB
- MD5
  
  fdd6b5351017916776ed05883990b0a0
- SHA1
  
  1b9302b36046c68b867385d2373d67ae3a5d5f35
- SHA256
  
  98794aedf6c8f8f2d911150a476c78615710a745787ba8fe2bcc38881dc09437
- SHA512
  
  e566aa64fbfd39cc43566ae754fe731e7c32430283c6b8aae22bdd3947e4c71e28051ac60f93e857f33a571f5f02f675ed7c2b56415077412fe13425d9820f04
- SSDEEP
  
  1536:K9N/LAzsLcdBsKhgxg/SuHJfby842LEZS/FCb4noaJSNzJO/:K9RwkKhgpuBEZSs4noakXO/
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2