5c55355f7c629cef6f6b3fd88795df675b806071adc8d415c2a778016117d228 | Triage

Sharing

General

Target

03039f632240cfb81ebab09e4d0c6d90_NEIKI
Size

108KB
Sample

240508-v3hscafb51
MD5

03039f632240cfb81ebab09e4d0c6d90
SHA1

cdf87328ec94746b18e6d0ce78873adfcef36a89
SHA256

5c55355f7c629cef6f6b3fd88795df675b806071adc8d415c2a778016117d228
SHA512

e9da3f773af4a54f2231f58ade02b30f2273b211144c21b3a25573415fbce74f95d8a6eb6b0bf0f9f20cd03f0537da2d9ecb804e54ede90af33a0bbca37e9804
SSDEEP

1536:dBNFlN3ghxM6Heme0G+LhGTf9OOmwiBmbKv2dJKCiVFcFmKcUsvKwF:dBTPiL/4f987OvdACiVFcFmKcUsvKwF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  03039f632240cfb81ebab09e4d0c6d90_NEIKI
- Size
  
  108KB
- MD5
  
  03039f632240cfb81ebab09e4d0c6d90
- SHA1
  
  cdf87328ec94746b18e6d0ce78873adfcef36a89
- SHA256
  
  5c55355f7c629cef6f6b3fd88795df675b806071adc8d415c2a778016117d228
- SHA512
  
  e9da3f773af4a54f2231f58ade02b30f2273b211144c21b3a25573415fbce74f95d8a6eb6b0bf0f9f20cd03f0537da2d9ecb804e54ede90af33a0bbca37e9804
- SSDEEP
  
  1536:dBNFlN3ghxM6Heme0G+LhGTf9OOmwiBmbKv2dJKCiVFcFmKcUsvKwF:dBTPiL/4f987OvdACiVFcFmKcUsvKwF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2