65dd0bba7d4e9dfd3841d3011a88f1af532befe2df20de5c132ed5ef8c0b62a0 | Triage

Sharing

General

Target

05ea48f237e80d82667f0fe686103050_NEIKI
Size

366KB
Sample

240508-waqg6aab29
MD5

05ea48f237e80d82667f0fe686103050
SHA1

524f50d0636cfdef1c04efe36abb8aae230b67e0
SHA256

65dd0bba7d4e9dfd3841d3011a88f1af532befe2df20de5c132ed5ef8c0b62a0
SHA512

2a17f9b8c2cad6d87c5de1ddc4b806ae0df6d4f247b9eb42c0f74225ea7dd9f26d5e7944fe516ae94c27b3c0a3c9f90fc5eccc143c80b0e4287ec96c948d8ad2
SSDEEP

6144:YuIAR7JamBqjwszeXmD6hUUZ4lef4Ek3u9zZawF6:nxUjTAUy4lef4Ek3u9zZawF6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  05ea48f237e80d82667f0fe686103050_NEIKI
- Size
  
  366KB
- MD5
  
  05ea48f237e80d82667f0fe686103050
- SHA1
  
  524f50d0636cfdef1c04efe36abb8aae230b67e0
- SHA256
  
  65dd0bba7d4e9dfd3841d3011a88f1af532befe2df20de5c132ed5ef8c0b62a0
- SHA512
  
  2a17f9b8c2cad6d87c5de1ddc4b806ae0df6d4f247b9eb42c0f74225ea7dd9f26d5e7944fe516ae94c27b3c0a3c9f90fc5eccc143c80b0e4287ec96c948d8ad2
- SSDEEP
  
  6144:YuIAR7JamBqjwszeXmD6hUUZ4lef4Ek3u9zZawF6:nxUjTAUy4lef4Ek3u9zZawF6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2