e23ab6c60a5e10ef705948559cc7132f8fb426ffd437338f2908b9780a4e60dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

477155343fa2767405b1bd05a99a1cc0_NEIKI
Size

138KB
Sample

240508-lgbmgadg5v
MD5

477155343fa2767405b1bd05a99a1cc0
SHA1

8f171c2129b2f126d2977c450d82f35728928b27
SHA256

e23ab6c60a5e10ef705948559cc7132f8fb426ffd437338f2908b9780a4e60dc
SHA512

acb063952339020ca54b8a0850c742e610725d4fadfb1ad0af136c01d29a21fe00204183bcfe6b56f17c026986e32d0a9063d18d61e3b54426aa1acb7aaab9ff
SSDEEP

1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPs:r7YubEwYXRWhpAJUHhzm4hUukS6Kmec2

Score

8^/10

evasion execution

Malware Config

Targets

- Target
  
  477155343fa2767405b1bd05a99a1cc0_NEIKI
- Size
  
  138KB
- MD5
  
  477155343fa2767405b1bd05a99a1cc0
- SHA1
  
  8f171c2129b2f126d2977c450d82f35728928b27
- SHA256
  
  e23ab6c60a5e10ef705948559cc7132f8fb426ffd437338f2908b9780a4e60dc
- SHA512
  
  acb063952339020ca54b8a0850c742e610725d4fadfb1ad0af136c01d29a21fe00204183bcfe6b56f17c026986e32d0a9063d18d61e3b54426aa1acb7aaab9ff
- SSDEEP
  
  1536:rC2/fYuPfbESFYXRWhpKRycRd57JkIqFHhzm4hWru/BzihhMN45MF5FvHP132xPs:r7YubEwYXRWhpAJUHhzm4hUukS6Kmec2
Score

8^/10

evasion execution
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecution

behavioral2

evasionexecution