Overview

overview

10

Static

static

3

f86cb4cf16...KI.exe

windows7-x64

10

f86cb4cf16...KI.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f86cb4cf16572de2ef63a4100acb0320_NEIKI

  • Size

    89KB

  • Sample

    240508-tazpqaee33

  • MD5

    f86cb4cf16572de2ef63a4100acb0320

  • SHA1

    c8ca9220570822154fe3379187e3e5d3c41ad060

  • SHA256

    e1d9231da438bc79309c97b7d333f5f01f646b79bba95af3d88219da261fe26b

  • SHA512

    8a6ee1a4395a9e68406c33767a07fee8532ee246dcfb180b98a9b6063f5873fc6198c67967bc038198ab97c62ead456721db15fac2eb26a79a46254d72851d03

  • SSDEEP

    1536:GT8dJ0xgUAoY4Jt11bjJ4r2Xv/sKicslExkg8F:w8d2AoftynBcslakgw

Score
10/10
persistence

Malware Config

Targets

    • Target

      f86cb4cf16572de2ef63a4100acb0320_NEIKI

    • Size

      89KB

    • MD5

      f86cb4cf16572de2ef63a4100acb0320

    • SHA1

      c8ca9220570822154fe3379187e3e5d3c41ad060

    • SHA256

      e1d9231da438bc79309c97b7d333f5f01f646b79bba95af3d88219da261fe26b

    • SHA512

      8a6ee1a4395a9e68406c33767a07fee8532ee246dcfb180b98a9b6063f5873fc6198c67967bc038198ab97c62ead456721db15fac2eb26a79a46254d72851d03

    • SSDEEP

      1536:GT8dJ0xgUAoY4Jt11bjJ4r2Xv/sKicslExkg8F:w8d2AoftynBcslakgw

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks