e27fbea020f84bb3c0102e3e3eff8eb3ff77596d85d3caa3ed12962661d3d6cc | Triage

Sharing

General

Target

5646807a031eaa6ccccc05d86a7f7b90_NEIKI
Size

364KB
Sample

240508-z2gwwafg81
MD5

5646807a031eaa6ccccc05d86a7f7b90
SHA1

13fcd14d37edf4c20d9582d5d55a33010a1a9251
SHA256

e27fbea020f84bb3c0102e3e3eff8eb3ff77596d85d3caa3ed12962661d3d6cc
SHA512

c8d2623f9e4b34b04fe649922f66fc7369cae9899b4f25f4882455bd7c3f4955e08594022eada9c24bb7472a1d8623dcaf915c22d2b8d77f5dd3cdb647a2fb88
SSDEEP

3072:J/yXvD2enVN5UkLPp1f5mbUM96Zvx+UZkxvU84xUa4bjRTItEcmHj:J/yfD2Apf04GuvIUZeqJ2jydmHj

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5646807a031eaa6ccccc05d86a7f7b90_NEIKI
- Size
  
  364KB
- MD5
  
  5646807a031eaa6ccccc05d86a7f7b90
- SHA1
  
  13fcd14d37edf4c20d9582d5d55a33010a1a9251
- SHA256
  
  e27fbea020f84bb3c0102e3e3eff8eb3ff77596d85d3caa3ed12962661d3d6cc
- SHA512
  
  c8d2623f9e4b34b04fe649922f66fc7369cae9899b4f25f4882455bd7c3f4955e08594022eada9c24bb7472a1d8623dcaf915c22d2b8d77f5dd3cdb647a2fb88
- SSDEEP
  
  3072:J/yXvD2enVN5UkLPp1f5mbUM96Zvx+UZkxvU84xUa4bjRTItEcmHj:J/yfD2Apf04GuvIUZeqJ2jydmHj
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2