5150252ddeaaf44e702df2fef3d9ad3693283119c862a9030fe5ab5bbcbd49ec | Triage

Sharing

General

Target

18cf9bf5fc1a32d2ea21618f1e7d3bc0_NEIKI
Size

96KB
Sample

240508-jqw9escg84
MD5

18cf9bf5fc1a32d2ea21618f1e7d3bc0
SHA1

fa40997abf3307701c506216084edb46c2fe8274
SHA256

5150252ddeaaf44e702df2fef3d9ad3693283119c862a9030fe5ab5bbcbd49ec
SHA512

d4fb2c94eb25125b6c2ee8a0ce545dba410eb038bf2cb8fb63c6c388a7618e8eec1f7f1e42c6c0b86624355f5cad97c543d9ee4368526f8f3b02c70a5245991a
SSDEEP

1536:tNFjbKApT5UvdnX99CEmEzlaMNsKrJzBAe9MbinV39+ChnSdFFn7Elz45zFV3zMv:RjbveXOEmEzlqKrDAAMbqV39ThSdn7EZ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  18cf9bf5fc1a32d2ea21618f1e7d3bc0_NEIKI
- Size
  
  96KB
- MD5
  
  18cf9bf5fc1a32d2ea21618f1e7d3bc0
- SHA1
  
  fa40997abf3307701c506216084edb46c2fe8274
- SHA256
  
  5150252ddeaaf44e702df2fef3d9ad3693283119c862a9030fe5ab5bbcbd49ec
- SHA512
  
  d4fb2c94eb25125b6c2ee8a0ce545dba410eb038bf2cb8fb63c6c388a7618e8eec1f7f1e42c6c0b86624355f5cad97c543d9ee4368526f8f3b02c70a5245991a
- SSDEEP
  
  1536:tNFjbKApT5UvdnX99CEmEzlaMNsKrJzBAe9MbinV39+ChnSdFFn7Elz45zFV3zMv:RjbveXOEmEzlqKrDAAMbqV39ThSdn7EZ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2