0e345b3fe5358d474d6acf4a7573e82842a9a01984681e4f3bcbaaf38d5fb642 | Triage

Sharing

General

Target

37696461b9ef1898a6bce753d667a6a0_NEIKI
Size

288KB
Sample

240508-kvkxmace4w
MD5

37696461b9ef1898a6bce753d667a6a0
SHA1

416655c99ed35f6038b724eb98bbc69bf7c924c6
SHA256

0e345b3fe5358d474d6acf4a7573e82842a9a01984681e4f3bcbaaf38d5fb642
SHA512

0caddf423dce5ea618afc09294bbf5039e68da7b2d35c9bad61333cb6509732b00d24f0a77bd7af4e5393d36530db1193c6267b8c53df60e1b372b83c0b5d148
SSDEEP

6144:zNLEyyi+WJxIAePDWJahAIcAePDWJaGA:zNYyy02DWkB2DWkR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  37696461b9ef1898a6bce753d667a6a0_NEIKI
- Size
  
  288KB
- MD5
  
  37696461b9ef1898a6bce753d667a6a0
- SHA1
  
  416655c99ed35f6038b724eb98bbc69bf7c924c6
- SHA256
  
  0e345b3fe5358d474d6acf4a7573e82842a9a01984681e4f3bcbaaf38d5fb642
- SHA512
  
  0caddf423dce5ea618afc09294bbf5039e68da7b2d35c9bad61333cb6509732b00d24f0a77bd7af4e5393d36530db1193c6267b8c53df60e1b372b83c0b5d148
- SSDEEP
  
  6144:zNLEyyi+WJxIAePDWJahAIcAePDWJaGA:zNYyy02DWkB2DWkR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2