b7c93484dbc43faf2d41ee24e4172a863cde7b54250fe75ca68a4540f2196bc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6c22b27476e9a582ee9464dd5d88c960_NEIKI
Size

4.1MB
Sample

240508-mtvfsabb28
MD5

6c22b27476e9a582ee9464dd5d88c960
SHA1

51f3bc9dd9dbf36bf8cfcce0ed207dd8bc021c3e
SHA256

b7c93484dbc43faf2d41ee24e4172a863cde7b54250fe75ca68a4540f2196bc4
SHA512

ac0e95d6966927ed120043f404061d4c069ad5fc13cdaef98bb43b8c0d09ed68600ce0ae72f612a9f134a63ddfa694f55fef56e7f74ed62b9428c701a6db0a97
SSDEEP

98304:+R0pI/IQlUoMPdmpSpw4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmX5n9klRKN41v

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6c22b27476e9a582ee9464dd5d88c960_NEIKI
- Size
  
  4.1MB
- MD5
  
  6c22b27476e9a582ee9464dd5d88c960
- SHA1
  
  51f3bc9dd9dbf36bf8cfcce0ed207dd8bc021c3e
- SHA256
  
  b7c93484dbc43faf2d41ee24e4172a863cde7b54250fe75ca68a4540f2196bc4
- SHA512
  
  ac0e95d6966927ed120043f404061d4c069ad5fc13cdaef98bb43b8c0d09ed68600ce0ae72f612a9f134a63ddfa694f55fef56e7f74ed62b9428c701a6db0a97
- SSDEEP
  
  98304:+R0pI/IQlUoMPdmpSpw4ADtnkgvNWlw6aTfN41v:+R0pIAQhMPdmX5n9klRKN41v
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2