b520e4e1e00175b85753e8f56e39799ea3cb615710d3128ea78f6a06524e94ef | Triage

Sharing

General

Target

ae08b6d9a74838e6863d8b7bef65ea90_NEIKI
Size

64KB
Sample

240509-awlkfagd6v
MD5

ae08b6d9a74838e6863d8b7bef65ea90
SHA1

c93c654a856711f2e13af95a28f51829c1d19ffa
SHA256

b520e4e1e00175b85753e8f56e39799ea3cb615710d3128ea78f6a06524e94ef
SHA512

a5fb2c2752fb0cb44ccf3c5a889a47930b8cddf17a20c7b7cec9bf0141f5498b8b67466e0c3eb71c193a1a601f842f9108973395ff608fdfbe39183975633b02
SSDEEP

768:VfBFddwUe1e1c2KqRU9zeadlQC+SZSo7FNCLtAfxcIwESVJ2p/1H5YuXdnh0Usbe:zMMO2xQzHdyLANCLtG62LmsrDWBi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ae08b6d9a74838e6863d8b7bef65ea90_NEIKI
- Size
  
  64KB
- MD5
  
  ae08b6d9a74838e6863d8b7bef65ea90
- SHA1
  
  c93c654a856711f2e13af95a28f51829c1d19ffa
- SHA256
  
  b520e4e1e00175b85753e8f56e39799ea3cb615710d3128ea78f6a06524e94ef
- SHA512
  
  a5fb2c2752fb0cb44ccf3c5a889a47930b8cddf17a20c7b7cec9bf0141f5498b8b67466e0c3eb71c193a1a601f842f9108973395ff608fdfbe39183975633b02
- SSDEEP
  
  768:VfBFddwUe1e1c2KqRU9zeadlQC+SZSo7FNCLtAfxcIwESVJ2p/1H5YuXdnh0Usbe:zMMO2xQzHdyLANCLtG62LmsrDWBi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2