a1bfb2b4d4d36bafa37be505955e1003f30f8e63c95851e32aaf57c3bead19f9 | Triage

Sharing

General

Target

df1400531618a2c716373e4cfe6a0b30_NEIKI
Size

89KB
Sample

240509-d1l9baba34
MD5

df1400531618a2c716373e4cfe6a0b30
SHA1

88e09d4c13b9cc2237405db0fc967f04c9b34ba4
SHA256

a1bfb2b4d4d36bafa37be505955e1003f30f8e63c95851e32aaf57c3bead19f9
SHA512

78808b022d9a17299832fed6611545d8a9f67509d8ba4bb63823f6fdc3e8fdca7fb2c792175e7ad8723ffd0ef5aa2f4e730bfabe19d6e2dbb784ad6019fae33e
SSDEEP

1536:aBi2CDiVZQs23GOfXGASAZRejILrhC0kOHsc5lExkg8Fk:asRPfXGASAiELFkesc5lakgwk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  df1400531618a2c716373e4cfe6a0b30_NEIKI
- Size
  
  89KB
- MD5
  
  df1400531618a2c716373e4cfe6a0b30
- SHA1
  
  88e09d4c13b9cc2237405db0fc967f04c9b34ba4
- SHA256
  
  a1bfb2b4d4d36bafa37be505955e1003f30f8e63c95851e32aaf57c3bead19f9
- SHA512
  
  78808b022d9a17299832fed6611545d8a9f67509d8ba4bb63823f6fdc3e8fdca7fb2c792175e7ad8723ffd0ef5aa2f4e730bfabe19d6e2dbb784ad6019fae33e
- SSDEEP
  
  1536:aBi2CDiVZQs23GOfXGASAZRejILrhC0kOHsc5lExkg8Fk:asRPfXGASAiELFkesc5lakgwk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2