c7d840dc1ca97e9451ac10642c35171b82c72961a46011ff1c7895e7c40fa056 | Triage

Sharing

General

Target

ca414eb6b6841e030edeb276544f0d50_NEIKI
Size

237KB
Sample

240509-cmt7bsfe58
MD5

ca414eb6b6841e030edeb276544f0d50
SHA1

60665df09f2e3117796ee8c06c8f74899d5e2305
SHA256

c7d840dc1ca97e9451ac10642c35171b82c72961a46011ff1c7895e7c40fa056
SHA512

df0254a1b80801f2df60c9fd53ef77babf54f6dc5ac75c1c7881ce7101e13f06dc9715b1f0db0b22de324ecab7e798a666da3740b969ac3112438dad04ab7bbf
SSDEEP

3072:/2jv/85rAUbj8Nq75Sq4iqnAUUjE02ZoL9snKKq:/2jv/85rXj8U5ihYjEToZY8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ca414eb6b6841e030edeb276544f0d50_NEIKI
- Size
  
  237KB
- MD5
  
  ca414eb6b6841e030edeb276544f0d50
- SHA1
  
  60665df09f2e3117796ee8c06c8f74899d5e2305
- SHA256
  
  c7d840dc1ca97e9451ac10642c35171b82c72961a46011ff1c7895e7c40fa056
- SHA512
  
  df0254a1b80801f2df60c9fd53ef77babf54f6dc5ac75c1c7881ce7101e13f06dc9715b1f0db0b22de324ecab7e798a666da3740b969ac3112438dad04ab7bbf
- SSDEEP
  
  3072:/2jv/85rAUbj8Nq75Sq4iqnAUUjE02ZoL9snKKq:/2jv/85rXj8U5ihYjEToZY8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2