108bd9b7f0e9375a0e3470fbde81db5bc73cd6bd9f0d6620e7f73b276ea58a34 | Triage

Sharing

General

Target

da19a4ccbec34c6163d493646438d980_NEIKI
Size

89KB
Sample

240508-rvl81sbd34
MD5

da19a4ccbec34c6163d493646438d980
SHA1

9ef8295e14d6d00ee17f32adc7bb3303dafb75c5
SHA256

108bd9b7f0e9375a0e3470fbde81db5bc73cd6bd9f0d6620e7f73b276ea58a34
SHA512

442f5c167f383e1e4e394b70826c02f548e657d88de37d24864eb0323101727769eba0e5b8dd3724b81a99c9f3885f4db77421d8631aa82a16f2f4386e563b6f
SSDEEP

1536:UpqbJGEHbL7aD6tJgJ+XtHRv9MmXc/xx/lYuYp83cFylExkg8Fk:UpqhGDYXtp9Mxx/lYP83cklakgwk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  da19a4ccbec34c6163d493646438d980_NEIKI
- Size
  
  89KB
- MD5
  
  da19a4ccbec34c6163d493646438d980
- SHA1
  
  9ef8295e14d6d00ee17f32adc7bb3303dafb75c5
- SHA256
  
  108bd9b7f0e9375a0e3470fbde81db5bc73cd6bd9f0d6620e7f73b276ea58a34
- SHA512
  
  442f5c167f383e1e4e394b70826c02f548e657d88de37d24864eb0323101727769eba0e5b8dd3724b81a99c9f3885f4db77421d8631aa82a16f2f4386e563b6f
- SSDEEP
  
  1536:UpqbJGEHbL7aD6tJgJ+XtHRv9MmXc/xx/lYuYp83cFylExkg8Fk:UpqhGDYXtp9Mxx/lYP83cklakgwk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2