005d4b8b73429a41c030514c9387214e919bdf5b039d34c35612134f7e70ac14 | Triage

Sharing

General

Target

a0011e088eb4e4fb2b32e0d27b2be730_NEIKI
Size

124KB
Sample

240508-n8e53sbe8w
MD5

a0011e088eb4e4fb2b32e0d27b2be730
SHA1

9426b8f5299963ea61834bd57d53189123c5a7a5
SHA256

005d4b8b73429a41c030514c9387214e919bdf5b039d34c35612134f7e70ac14
SHA512

45c0239b45492445909490a25d3d3d6e3faeea54a95fc36fd62ef968b5ac8fe904967c8d06faf61f42eef82ffea19ddc3092c4cb4b8446384b569951b7c12257
SSDEEP

1536:h7FJCyKsJrRyhtGUCI6jXq+66DFUABABOVLefEjw6YmLsAjqLciEFms11:BFULqrgN6j6+JB8M6m9jqLsFmsr

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a0011e088eb4e4fb2b32e0d27b2be730_NEIKI
- Size
  
  124KB
- MD5
  
  a0011e088eb4e4fb2b32e0d27b2be730
- SHA1
  
  9426b8f5299963ea61834bd57d53189123c5a7a5
- SHA256
  
  005d4b8b73429a41c030514c9387214e919bdf5b039d34c35612134f7e70ac14
- SHA512
  
  45c0239b45492445909490a25d3d3d6e3faeea54a95fc36fd62ef968b5ac8fe904967c8d06faf61f42eef82ffea19ddc3092c4cb4b8446384b569951b7c12257
- SSDEEP
  
  1536:h7FJCyKsJrRyhtGUCI6jXq+66DFUABABOVLefEjw6YmLsAjqLciEFms11:BFULqrgN6j6+JB8M6m9jqLsFmsr
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2