a465508d709a679cda4b54a319aa3f492ac1f4bae45f98d45b00d4d07da7ff92 | Triage

Sharing

General

Target

ed416cb6e4a50f579ce1f41c1358e950_NEIKI
Size

480KB
Sample

240508-sseltsdc26
MD5

ed416cb6e4a50f579ce1f41c1358e950
SHA1

b6b3c4290bab1aec67d57454215b2936a5c384e7
SHA256

a465508d709a679cda4b54a319aa3f492ac1f4bae45f98d45b00d4d07da7ff92
SHA512

fd169a7e2b6b658e245ab4ec66b496d86e536797b12ed82e94c047b4558557c62284e6a779c25c83c08e744f83605bbdfd76bac5ed46c7dd56cba6b0b96d1bd1
SSDEEP

12288:4jauDReWuRWNFdmVMe7oJ3AcUXMYsD5OJxa4bYVbtUp:4DDaRsUGD5OJL

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ed416cb6e4a50f579ce1f41c1358e950_NEIKI
- Size
  
  480KB
- MD5
  
  ed416cb6e4a50f579ce1f41c1358e950
- SHA1
  
  b6b3c4290bab1aec67d57454215b2936a5c384e7
- SHA256
  
  a465508d709a679cda4b54a319aa3f492ac1f4bae45f98d45b00d4d07da7ff92
- SHA512
  
  fd169a7e2b6b658e245ab4ec66b496d86e536797b12ed82e94c047b4558557c62284e6a779c25c83c08e744f83605bbdfd76bac5ed46c7dd56cba6b0b96d1bd1
- SSDEEP
  
  12288:4jauDReWuRWNFdmVMe7oJ3AcUXMYsD5OJxa4bYVbtUp:4DDaRsUGD5OJL
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2