c768670c1d85da50cad2772d220f6cc7b22e7533a4660b1fa7fd437dfd573e56 | Triage

Sharing

General

Target

b051e09f052ffe94bff963ff36e16240_NEIKI
Size

55KB
Sample

240509-a2rcwagg2w
MD5

b051e09f052ffe94bff963ff36e16240
SHA1

cfd9ebe28f93c51bba2c35762d65a95d1f96cfdb
SHA256

c768670c1d85da50cad2772d220f6cc7b22e7533a4660b1fa7fd437dfd573e56
SHA512

94a3ff104a95dbd5400c7f9d2509f8ba14a293a2fdd7fac07029a46baccbf915fb1845a553a9cb0a5ac4a7904625f6558e12312a56e1ce9fa26db8daa916da59
SSDEEP

1536:yZMn8+2iIgz/n4i7716NSoNSd0A3shxD6:yi8+2N+/4K16NXNW0A8hh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b051e09f052ffe94bff963ff36e16240_NEIKI
- Size
  
  55KB
- MD5
  
  b051e09f052ffe94bff963ff36e16240
- SHA1
  
  cfd9ebe28f93c51bba2c35762d65a95d1f96cfdb
- SHA256
  
  c768670c1d85da50cad2772d220f6cc7b22e7533a4660b1fa7fd437dfd573e56
- SHA512
  
  94a3ff104a95dbd5400c7f9d2509f8ba14a293a2fdd7fac07029a46baccbf915fb1845a553a9cb0a5ac4a7904625f6558e12312a56e1ce9fa26db8daa916da59
- SSDEEP
  
  1536:yZMn8+2iIgz/n4i7716NSoNSd0A3shxD6:yi8+2N+/4K16NXNW0A8hh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2