500c36f7dc5e63b0c27fcb56d4a5ea7c91c2da4d613155a5851e64dcbeadcb75 | Triage

Sharing

General

Target

ca02b63114c57483fe0db18549bbf530_NEIKI
Size

79KB
Sample

240509-cl577sfe35
MD5

ca02b63114c57483fe0db18549bbf530
SHA1

da4af80b09f0c539637b49752a207ab541fefefd
SHA256

500c36f7dc5e63b0c27fcb56d4a5ea7c91c2da4d613155a5851e64dcbeadcb75
SHA512

8961917a7a9826144908a5c57044684b55ac0c6717846a13024d7fd8207532f8a29186bc612a228bae4524ec72a9b3d9a8fbcbbe821d5ca9d973bf633a861e87
SSDEEP

1536:gbLba+TvQ3ww/BSNbYzBd5+6VxlUE0iFkSIgiItKq9v6DK:0Lba+bw/BSNbkrUE0ixtBtKq9vV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ca02b63114c57483fe0db18549bbf530_NEIKI
- Size
  
  79KB
- MD5
  
  ca02b63114c57483fe0db18549bbf530
- SHA1
  
  da4af80b09f0c539637b49752a207ab541fefefd
- SHA256
  
  500c36f7dc5e63b0c27fcb56d4a5ea7c91c2da4d613155a5851e64dcbeadcb75
- SHA512
  
  8961917a7a9826144908a5c57044684b55ac0c6717846a13024d7fd8207532f8a29186bc612a228bae4524ec72a9b3d9a8fbcbbe821d5ca9d973bf633a861e87
- SSDEEP
  
  1536:gbLba+TvQ3ww/BSNbYzBd5+6VxlUE0iFkSIgiItKq9v6DK:0Lba+bw/BSNbkrUE0ixtBtKq9vV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2