cd894826bb495ece3b35ee1d8719b841055adfbc6b1da5f126656b086c5619b3 | Triage

Sharing

General

Target

6806ea3e2bb8a30639fa924332c8d570_NEIKI
Size

163KB
Sample

240508-mn51bsag59
MD5

6806ea3e2bb8a30639fa924332c8d570
SHA1

40e32fa26b2b386ce2973f0a321ac69e4bc2810e
SHA256

cd894826bb495ece3b35ee1d8719b841055adfbc6b1da5f126656b086c5619b3
SHA512

47e131da42663ded362553b3924c3721d17c4420cd3de2e9a732170481d73431e58e61537597c3d4061ed5ffcb9b6595f0ec912521f531134621bfa3a8018899
SSDEEP

1536:P2nnrQeEucJwoVFuvd3QZqXS1R+shPIs6elProNVU4qNVUrk/9QbfBr+7GwKrPAS:7L1FGdAZqXS1R+sJHltOrWKDBr+yJb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6806ea3e2bb8a30639fa924332c8d570_NEIKI
- Size
  
  163KB
- MD5
  
  6806ea3e2bb8a30639fa924332c8d570
- SHA1
  
  40e32fa26b2b386ce2973f0a321ac69e4bc2810e
- SHA256
  
  cd894826bb495ece3b35ee1d8719b841055adfbc6b1da5f126656b086c5619b3
- SHA512
  
  47e131da42663ded362553b3924c3721d17c4420cd3de2e9a732170481d73431e58e61537597c3d4061ed5ffcb9b6595f0ec912521f531134621bfa3a8018899
- SSDEEP
  
  1536:P2nnrQeEucJwoVFuvd3QZqXS1R+shPIs6elProNVU4qNVUrk/9QbfBr+7GwKrPAS:7L1FGdAZqXS1R+sJHltOrWKDBr+yJb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2