1c693836b4a6e547c6217b5129962aeada2bcd764bc019275c22f64e9386a082 | Triage

Sharing

General

Target

dd3c08624f0c3eacb570afc149dfe920_NEIKI
Size

76KB
Sample

240508-rzmekshc71
MD5

dd3c08624f0c3eacb570afc149dfe920
SHA1

1b29fc712a41b554ef0b52cacfb234cae6b32f5d
SHA256

1c693836b4a6e547c6217b5129962aeada2bcd764bc019275c22f64e9386a082
SHA512

1746dcae977e4c3aee1b824bd39cde2fd93c42a67806aaabb0b9026a0f48e23b4607465986e4e2763692be780d4c9403ed08cb99d381fc5fdff6ade80febf7f5
SSDEEP

1536:NDj2d6rnJbJnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nsqnl1RS:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1Mu9

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  dd3c08624f0c3eacb570afc149dfe920_NEIKI
- Size
  
  76KB
- MD5
  
  dd3c08624f0c3eacb570afc149dfe920
- SHA1
  
  1b29fc712a41b554ef0b52cacfb234cae6b32f5d
- SHA256
  
  1c693836b4a6e547c6217b5129962aeada2bcd764bc019275c22f64e9386a082
- SHA512
  
  1746dcae977e4c3aee1b824bd39cde2fd93c42a67806aaabb0b9026a0f48e23b4607465986e4e2763692be780d4c9403ed08cb99d381fc5fdff6ade80febf7f5
- SSDEEP
  
  1536:NDj2d6rnJbJnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nsqnl1RS:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1Mu9
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2