Overview

overview

10

Static

static

3

d3e783fb34...KI.exe

windows7-x64

10

d3e783fb34...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d3e783fb34aaeb16f26edfcbebc12f50_NEIKI

  • Size

    96KB

  • Sample

    240508-ref23agc3x

  • MD5

    d3e783fb34aaeb16f26edfcbebc12f50

  • SHA1

    2d87609bedfcdf6db68ba700e860cb5bb721b6f3

  • SHA256

    9073b318c94a6c80efb22babce09104e7088a46dbba9f8d2126268b407a76c1d

  • SHA512

    b8b4b2e12dea8dc6dbfcc8829e933b4a0b6c384c2636179d1881c7649933210a980348df6fdfc950cd5f30e5eda23e85b214f795ecdc8761c8ed6977e8d03884

  • SSDEEP

    1536:+1WbP47V96ago9VvpysbStQ7qibWY333kcAS8ZtlWXVpHkwaAjWbjtKBvU:sWTYOago9VIsr7qS4S8PlW/kwVwtCU

Score
10/10
persistence

Malware Config

Targets

    • Target

      d3e783fb34aaeb16f26edfcbebc12f50_NEIKI

    • Size

      96KB

    • MD5

      d3e783fb34aaeb16f26edfcbebc12f50

    • SHA1

      2d87609bedfcdf6db68ba700e860cb5bb721b6f3

    • SHA256

      9073b318c94a6c80efb22babce09104e7088a46dbba9f8d2126268b407a76c1d

    • SHA512

      b8b4b2e12dea8dc6dbfcc8829e933b4a0b6c384c2636179d1881c7649933210a980348df6fdfc950cd5f30e5eda23e85b214f795ecdc8761c8ed6977e8d03884

    • SSDEEP

      1536:+1WbP47V96ago9VvpysbStQ7qibWY333kcAS8ZtlWXVpHkwaAjWbjtKBvU:sWTYOago9VIsr7qS4S8PlW/kwVwtCU

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks