fb14891d34b9b3e0a9ceafca3c2ec106b978985bde9232e5f99b2c53860138b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b02e5510e1bec6a91ffcd63802a67bf0_NEIKI
Size

551KB
Sample

240509-a2edbabb56
MD5

b02e5510e1bec6a91ffcd63802a67bf0
SHA1

c00f0524239732290db88e7b92d1b8b69f0c0154
SHA256

fb14891d34b9b3e0a9ceafca3c2ec106b978985bde9232e5f99b2c53860138b0
SHA512

ca69f58e5c097649e7953f86f23e4169e62db8b55732e088f67d63d9cee75a5169f97f704b212849f78646587934e9311c70ce6a5656ae7bb76289772ee2f022
SSDEEP

6144:Tg14645CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/U7vXVCpZ3EJHm2k5CPXb5:Tg14pFHRFbe7chCpZ3EJHmhFHRFbeN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b02e5510e1bec6a91ffcd63802a67bf0_NEIKI
- Size
  
  551KB
- MD5
  
  b02e5510e1bec6a91ffcd63802a67bf0
- SHA1
  
  c00f0524239732290db88e7b92d1b8b69f0c0154
- SHA256
  
  fb14891d34b9b3e0a9ceafca3c2ec106b978985bde9232e5f99b2c53860138b0
- SHA512
  
  ca69f58e5c097649e7953f86f23e4169e62db8b55732e088f67d63d9cee75a5169f97f704b212849f78646587934e9311c70ce6a5656ae7bb76289772ee2f022
- SSDEEP
  
  6144:Tg14645CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/U7vXVCpZ3EJHm2k5CPXb5:Tg14pFHRFbe7chCpZ3EJHmhFHRFbeN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2