b4851065b3686795c7d602c45ae6140044613511b7dc44df4b786c4244262d9e | Triage

Sharing

General

Target

a6d4080cde34aac535907affff9a0560_NEIKI
Size

363KB
Sample

240508-pg5gbsee96
MD5

a6d4080cde34aac535907affff9a0560
SHA1

4f599ab3e155ef9169c2d88b7fad7f2ca3041905
SHA256

b4851065b3686795c7d602c45ae6140044613511b7dc44df4b786c4244262d9e
SHA512

9db7259cd74850adb48247554cbd3854608fea67813f4fcd7361b3cc1bd7a6fbdc88ab0ac8e3fb0ee6b1cd025ab9ac9697625cdb13f49f561b3e6256df51352e
SSDEEP

6144:fLlXhH1mKVU5tTbVXksax8n5tTDUZNSN58VU5tT:fLlxH1vG5tP6sus5t6NSN6G5t

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  a6d4080cde34aac535907affff9a0560_NEIKI
- Size
  
  363KB
- MD5
  
  a6d4080cde34aac535907affff9a0560
- SHA1
  
  4f599ab3e155ef9169c2d88b7fad7f2ca3041905
- SHA256
  
  b4851065b3686795c7d602c45ae6140044613511b7dc44df4b786c4244262d9e
- SHA512
  
  9db7259cd74850adb48247554cbd3854608fea67813f4fcd7361b3cc1bd7a6fbdc88ab0ac8e3fb0ee6b1cd025ab9ac9697625cdb13f49f561b3e6256df51352e
- SSDEEP
  
  6144:fLlXhH1mKVU5tTbVXksax8n5tTDUZNSN58VU5tT:fLlxH1vG5tP6sus5t6NSN6G5t
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2