Overview

overview

10

Static

static

3

036ced8f00...KI.exe

windows7-x64

10

036ced8f00...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    036ced8f008a33d8a564cb3ca791c8c0_NEIKI

  • Size

    446KB

  • Sample

    240508-v4m4fshf97

  • MD5

    036ced8f008a33d8a564cb3ca791c8c0

  • SHA1

    bb318442646687a213fbf64ffc6b553b5b88e2ee

  • SHA256

    4856d1c184d2f0f2e5a1bb428baeeb35aab11bfff310c33958cde4bdcaa416bc

  • SHA512

    6c04959eebd483dfbe005826118ddcac4c8cb78f2180a5120ff9b8119715c63e6df45daaba3e5fd45431921d860cf27a482a222cbdcb874933e2c457c8e1fc88

  • SSDEEP

    6144:qwxRmiCyPOwXYrMdlvkGr0f+uPOwXYrMdlsLS7De:qwx05wIaJwIdSy

Score
10/10
persistence

Malware Config

Targets

    • Target

      036ced8f008a33d8a564cb3ca791c8c0_NEIKI

    • Size

      446KB

    • MD5

      036ced8f008a33d8a564cb3ca791c8c0

    • SHA1

      bb318442646687a213fbf64ffc6b553b5b88e2ee

    • SHA256

      4856d1c184d2f0f2e5a1bb428baeeb35aab11bfff310c33958cde4bdcaa416bc

    • SHA512

      6c04959eebd483dfbe005826118ddcac4c8cb78f2180a5120ff9b8119715c63e6df45daaba3e5fd45431921d860cf27a482a222cbdcb874933e2c457c8e1fc88

    • SSDEEP

      6144:qwxRmiCyPOwXYrMdlvkGr0f+uPOwXYrMdlsLS7De:qwx05wIaJwIdSy

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks