7bd07859fb5e5c1be03fde08f04b5a7c78cddc32372f01d004c84a9f1e48b6c1 | Triage

Sharing

General

Target

a30316e5962dca158a5bb0fc33216180_NEIKI
Size

264KB
Sample

240508-pbn76abg5v
MD5

a30316e5962dca158a5bb0fc33216180
SHA1

f04604a2dfeff057faa36616a4b6a51a61a0ba31
SHA256

7bd07859fb5e5c1be03fde08f04b5a7c78cddc32372f01d004c84a9f1e48b6c1
SHA512

653303495a299aa4c6fd0d7bfe1a49463525969d267954022a2f387918ec42db0f1d6ac1e44cff0159f989d2f645fb32403f2cdc4c9342cf25ef19810434885f
SSDEEP

6144:XBtOXTqfpui6yYPaIGck72siBTQtpui6yYPaIGckv:xtOjUpV6yYPc2siBTspV6yYPo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a30316e5962dca158a5bb0fc33216180_NEIKI
- Size
  
  264KB
- MD5
  
  a30316e5962dca158a5bb0fc33216180
- SHA1
  
  f04604a2dfeff057faa36616a4b6a51a61a0ba31
- SHA256
  
  7bd07859fb5e5c1be03fde08f04b5a7c78cddc32372f01d004c84a9f1e48b6c1
- SHA512
  
  653303495a299aa4c6fd0d7bfe1a49463525969d267954022a2f387918ec42db0f1d6ac1e44cff0159f989d2f645fb32403f2cdc4c9342cf25ef19810434885f
- SSDEEP
  
  6144:XBtOXTqfpui6yYPaIGck72siBTQtpui6yYPaIGckv:xtOjUpV6yYPc2siBTspV6yYPo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2