e388e42de8822099a857f55d8cf8e31b499e339bb648ab98888b0897974e5182 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60b96942db46754fd8607f7a4af6ad20_NEIKI
Size

92KB
Sample

240508-md8y8sff8x
MD5

60b96942db46754fd8607f7a4af6ad20
SHA1

95241dfac89287fd7e92f4adb47c206b130c16d5
SHA256

e388e42de8822099a857f55d8cf8e31b499e339bb648ab98888b0897974e5182
SHA512

8a23259e146bc935ac2669452c646a9ee9da6963f14e867f14f8f6eda7a3c56e30b4fdcd0ab9adaab6a0f02324f21504711c608e985fbe81cca47805d4fb51c6
SSDEEP

1536:otKoBuu518Niep+QD0UsijXq+66DFUABABOVLefE3:gKeUeFij6+JB8M3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  60b96942db46754fd8607f7a4af6ad20_NEIKI
- Size
  
  92KB
- MD5
  
  60b96942db46754fd8607f7a4af6ad20
- SHA1
  
  95241dfac89287fd7e92f4adb47c206b130c16d5
- SHA256
  
  e388e42de8822099a857f55d8cf8e31b499e339bb648ab98888b0897974e5182
- SHA512
  
  8a23259e146bc935ac2669452c646a9ee9da6963f14e867f14f8f6eda7a3c56e30b4fdcd0ab9adaab6a0f02324f21504711c608e985fbe81cca47805d4fb51c6
- SSDEEP
  
  1536:otKoBuu518Niep+QD0UsijXq+66DFUABABOVLefE3:gKeUeFij6+JB8M3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2