e92ea368d5d71a0257e1d0b2dd8f79b2aee6bf88568fbbf86e9ae1d09be893ff | Triage

Sharing

General

Target

3cb45d3d61bba82a57f3daf184a11510_NEIKI
Size

64KB
Sample

240508-k3bzpafd97
MD5

3cb45d3d61bba82a57f3daf184a11510
SHA1

054d45a8719b1491d93bacf60141e0b93d390a80
SHA256

e92ea368d5d71a0257e1d0b2dd8f79b2aee6bf88568fbbf86e9ae1d09be893ff
SHA512

919bbdc5f837fec7cf8e13d32e9dc11f7c701436daa547d9760a754fa97f7900972e8ee3f268ed72d5e7f9ba7071339999b137aa5488759a0ed190d9ec64ffae
SSDEEP

768:3jktXqFgF03krQJY0epyaoIMcdD/uKJsCRW1ZB/1H5eXdnhgl72KNtL4waLq:TyXqFgcsEaoIMKuKPRwZDCgNtn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3cb45d3d61bba82a57f3daf184a11510_NEIKI
- Size
  
  64KB
- MD5
  
  3cb45d3d61bba82a57f3daf184a11510
- SHA1
  
  054d45a8719b1491d93bacf60141e0b93d390a80
- SHA256
  
  e92ea368d5d71a0257e1d0b2dd8f79b2aee6bf88568fbbf86e9ae1d09be893ff
- SHA512
  
  919bbdc5f837fec7cf8e13d32e9dc11f7c701436daa547d9760a754fa97f7900972e8ee3f268ed72d5e7f9ba7071339999b137aa5488759a0ed190d9ec64ffae
- SSDEEP
  
  768:3jktXqFgF03krQJY0epyaoIMcdD/uKJsCRW1ZB/1H5eXdnhgl72KNtL4waLq:TyXqFgcsEaoIMKuKPRwZDCgNtn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2