f4dd4023e23fc6017025567f97a99a8475635cc504bc264f419adc265618516e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2e469bd29939a049d35d694a1d99c00_NEIKI
Size

76KB
Sample

240509-c614zseb6w
MD5

d2e469bd29939a049d35d694a1d99c00
SHA1

2fca992e47b7b93682062fc4eadeef6b3a422259
SHA256

f4dd4023e23fc6017025567f97a99a8475635cc504bc264f419adc265618516e
SHA512

000d6a24654b5ef41a085bf74140e38fca2970a1f92cbd3196a2199ffac249840f65252a96a690bf93594497e0f3a3a15fb93efa34f61ea86102d8da9b981d8d
SSDEEP

1536:pNpkRkqJnSrWPHBdAiAmw7bVN8iL/HXz670nWCgLvvv7U6E76t:pXkRkqcFiAnVN8iL/3zu0K

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d2e469bd29939a049d35d694a1d99c00_NEIKI
- Size
  
  76KB
- MD5
  
  d2e469bd29939a049d35d694a1d99c00
- SHA1
  
  2fca992e47b7b93682062fc4eadeef6b3a422259
- SHA256
  
  f4dd4023e23fc6017025567f97a99a8475635cc504bc264f419adc265618516e
- SHA512
  
  000d6a24654b5ef41a085bf74140e38fca2970a1f92cbd3196a2199ffac249840f65252a96a690bf93594497e0f3a3a15fb93efa34f61ea86102d8da9b981d8d
- SSDEEP
  
  1536:pNpkRkqJnSrWPHBdAiAmw7bVN8iL/HXz670nWCgLvvv7U6E76t:pXkRkqcFiAnVN8iL/3zu0K
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2