cb599e0b07a8909e887e9420574aeddf6231399f9ea025d827adf7f6b06c72a9 | Triage

Sharing

General

Target

6f4e08c716065dd47d0f37c5ed7026e0_NEIKI
Size

256KB
Sample

240508-myabeabd28
MD5

6f4e08c716065dd47d0f37c5ed7026e0
SHA1

f8f7295f10111c6c7591fda26a6121fd4385bf07
SHA256

cb599e0b07a8909e887e9420574aeddf6231399f9ea025d827adf7f6b06c72a9
SHA512

b6200cba7ea48ada35c45a16ea33cf57b9e327b8c58443a6e56661204093e179725951cb687c205d4438aae36ef8bb908d7aaf7c1ab86647728adec8643dc340
SSDEEP

6144:duzub1853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZj:du65QBpnchWcZj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6f4e08c716065dd47d0f37c5ed7026e0_NEIKI
- Size
  
  256KB
- MD5
  
  6f4e08c716065dd47d0f37c5ed7026e0
- SHA1
  
  f8f7295f10111c6c7591fda26a6121fd4385bf07
- SHA256
  
  cb599e0b07a8909e887e9420574aeddf6231399f9ea025d827adf7f6b06c72a9
- SHA512
  
  b6200cba7ea48ada35c45a16ea33cf57b9e327b8c58443a6e56661204093e179725951cb687c205d4438aae36ef8bb908d7aaf7c1ab86647728adec8643dc340
- SSDEEP
  
  6144:duzub1853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZj:du65QBpnchWcZj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2