f70a7a8dfb5b14f5b81efa9a15d88339c7a655fc10a444c3612754d4d2e40ec7 | Triage

Sharing

General

Target

dbb02b80dd9a9a39e48be175b5714ee0_NEIKI
Size

87KB
Sample

240509-dr6llafe41
MD5

dbb02b80dd9a9a39e48be175b5714ee0
SHA1

b0b5a2254bc16c5246e1ba92e6be05a790354f9b
SHA256

f70a7a8dfb5b14f5b81efa9a15d88339c7a655fc10a444c3612754d4d2e40ec7
SHA512

969ec4dfc6198e779929b2b6e800f0c1ff9c9c807965df8cb16145ea7112ccd2857c9778c2fda46f5d4a6e97648e8ac932f1af5f62aa1625bcca9a5ecb0bc15b
SSDEEP

1536:Uzq9mv6z3HG05W9oG+tKMEPDJqDFAusVvsliNPRQ4DRSRBDNrR0RVe7R6R8RPD2d:UUDpM9oHwPDJJHvZPeWAnDlmbGcGFDex

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  dbb02b80dd9a9a39e48be175b5714ee0_NEIKI
- Size
  
  87KB
- MD5
  
  dbb02b80dd9a9a39e48be175b5714ee0
- SHA1
  
  b0b5a2254bc16c5246e1ba92e6be05a790354f9b
- SHA256
  
  f70a7a8dfb5b14f5b81efa9a15d88339c7a655fc10a444c3612754d4d2e40ec7
- SHA512
  
  969ec4dfc6198e779929b2b6e800f0c1ff9c9c807965df8cb16145ea7112ccd2857c9778c2fda46f5d4a6e97648e8ac932f1af5f62aa1625bcca9a5ecb0bc15b
- SSDEEP
  
  1536:Uzq9mv6z3HG05W9oG+tKMEPDJqDFAusVvsliNPRQ4DRSRBDNrR0RVe7R6R8RPD2d:UUDpM9oHwPDJJHvZPeWAnDlmbGcGFDex
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2