729e376b0d44c95438de65974b23b3e0bfb1eb27edb4cf5e366e50e36c411a22 | Triage

Sharing

General

Target

dcdd80fef49233e1f1569ffcb7f8e580_NEIKI
Size

291KB
Sample

240509-dvg3eaae99
MD5

dcdd80fef49233e1f1569ffcb7f8e580
SHA1

32d88256f625abd5ede81703b0fa223929050e17
SHA256

729e376b0d44c95438de65974b23b3e0bfb1eb27edb4cf5e366e50e36c411a22
SHA512

116ec423f531acf5faa394595c1a2ada5b99939f46e207f0332979c8a297659a08c69521c083e04e95d19cf16a6780152540ba35b5dbda5c6339fab15cb99ebd
SSDEEP

3072:WcX93xwq19gL2SjGojCJa79TBfsY5vXWqvuHcYnLzqP2soN5Cfsw:WcNhJgX9z9TB0YRX8naO5u

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  dcdd80fef49233e1f1569ffcb7f8e580_NEIKI
- Size
  
  291KB
- MD5
  
  dcdd80fef49233e1f1569ffcb7f8e580
- SHA1
  
  32d88256f625abd5ede81703b0fa223929050e17
- SHA256
  
  729e376b0d44c95438de65974b23b3e0bfb1eb27edb4cf5e366e50e36c411a22
- SHA512
  
  116ec423f531acf5faa394595c1a2ada5b99939f46e207f0332979c8a297659a08c69521c083e04e95d19cf16a6780152540ba35b5dbda5c6339fab15cb99ebd
- SSDEEP
  
  3072:WcX93xwq19gL2SjGojCJa79TBfsY5vXWqvuHcYnLzqP2soN5Cfsw:WcNhJgX9z9TB0YRX8naO5u
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2