e7f79ddc3bbfb79677c4a8ff6f854a78e2239efb9f2db9db3ffd101867ff0633 | Triage

Sharing

General

Target

663259ebbed079526070391844cb8e00_NEIKI
Size

64KB
Sample

240508-mlm2qsaf37
MD5

663259ebbed079526070391844cb8e00
SHA1

f00655128ee45c1f3e8cd07f14ba979c2267c875
SHA256

e7f79ddc3bbfb79677c4a8ff6f854a78e2239efb9f2db9db3ffd101867ff0633
SHA512

669fcc4483c881974618c0c4060f9b39e93264b248a1a89b95fc62ed0bd35dfd74978d2f835365b5d9a5d9516122e5632650bfffce4a75f18b851fa4f7018a51
SSDEEP

1536:ZC8fPOClYuaeqdknfdDNKjjMS2LUMQCb2L2YrDWBi:okPOClJA+ijs9D432Bi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  663259ebbed079526070391844cb8e00_NEIKI
- Size
  
  64KB
- MD5
  
  663259ebbed079526070391844cb8e00
- SHA1
  
  f00655128ee45c1f3e8cd07f14ba979c2267c875
- SHA256
  
  e7f79ddc3bbfb79677c4a8ff6f854a78e2239efb9f2db9db3ffd101867ff0633
- SHA512
  
  669fcc4483c881974618c0c4060f9b39e93264b248a1a89b95fc62ed0bd35dfd74978d2f835365b5d9a5d9516122e5632650bfffce4a75f18b851fa4f7018a51
- SSDEEP
  
  1536:ZC8fPOClYuaeqdknfdDNKjjMS2LUMQCb2L2YrDWBi:okPOClJA+ijs9D432Bi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2