7c72dddec14936b2f3465c48c6bc19fd18620620280c031506b844580ae5e229 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae60e800052ea37a981e90ebc48e0200_NEIKI
Size

1.7MB
Sample

240509-axf2cagd9x
MD5

ae60e800052ea37a981e90ebc48e0200
SHA1

297e26268fd8c4d4f2805c52895d57f4240c1077
SHA256

7c72dddec14936b2f3465c48c6bc19fd18620620280c031506b844580ae5e229
SHA512

555113367a9c08d833fb24b7d6f9bb95c87eaff5e9256874d6a5a51a9e4be3853afa07d4fc6e7d94847746c493f703430e4a4e473f48ba8109dd5a7e19eeea3c
SSDEEP

24576:udq5hL6X1q5h3q5hPPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHb:u+6BbazR0vKLXZb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ae60e800052ea37a981e90ebc48e0200_NEIKI
- Size
  
  1.7MB
- MD5
  
  ae60e800052ea37a981e90ebc48e0200
- SHA1
  
  297e26268fd8c4d4f2805c52895d57f4240c1077
- SHA256
  
  7c72dddec14936b2f3465c48c6bc19fd18620620280c031506b844580ae5e229
- SHA512
  
  555113367a9c08d833fb24b7d6f9bb95c87eaff5e9256874d6a5a51a9e4be3853afa07d4fc6e7d94847746c493f703430e4a4e473f48ba8109dd5a7e19eeea3c
- SSDEEP
  
  24576:udq5hL6X1q5h3q5hPPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHb:u+6BbazR0vKLXZb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2