Overview

overview

10

Static

static

3

f9c2478ba1...KI.exe

windows7-x64

10

f9c2478ba1...KI.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f9c2478ba1e584c3cb5e27952881e1c0_NEIKI

  • Size

    100KB

  • Sample

    240508-tckctacb8z

  • MD5

    f9c2478ba1e584c3cb5e27952881e1c0

  • SHA1

    79705148c715451024e7dbaf28d101f0cb19274d

  • SHA256

    1b796ba6d37de90fe0a7d54a25ac723f09c0e0fec837c956a7640a3f3edfffc2

  • SHA512

    3af209bddef97b5393269299e81e9e60541f790b80335dafa226d83eec31f94be68ce335fc28ccbe06c4f62c85b885f0964e9e5e22ba8111eea85a0374d4dbdb

  • SSDEEP

    3072:xsj2pbgCNu1dQc+uu7ofgK6PUD8n7QzKN999984R/czMFR8n5j8YD:xt8CCQc+uu7ofgK6PUD8UzKN99999cAO

Score
10/10
persistence

Malware Config

Targets

    • Target

      f9c2478ba1e584c3cb5e27952881e1c0_NEIKI

    • Size

      100KB

    • MD5

      f9c2478ba1e584c3cb5e27952881e1c0

    • SHA1

      79705148c715451024e7dbaf28d101f0cb19274d

    • SHA256

      1b796ba6d37de90fe0a7d54a25ac723f09c0e0fec837c956a7640a3f3edfffc2

    • SHA512

      3af209bddef97b5393269299e81e9e60541f790b80335dafa226d83eec31f94be68ce335fc28ccbe06c4f62c85b885f0964e9e5e22ba8111eea85a0374d4dbdb

    • SSDEEP

      3072:xsj2pbgCNu1dQc+uu7ofgK6PUD8n7QzKN999984R/czMFR8n5j8YD:xt8CCQc+uu7ofgK6PUD8UzKN99999cAO

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks