ce6aec4af217cafcd65ccebe6ae46d53888e7425fdc4b73706fae8eb09d1ba6d | Triage

Sharing

General

Target

f099e64c8a431cae6191c1f037666dd0_NEIKI
Size

81KB
Sample

240509-e5t1dsag8z
MD5

f099e64c8a431cae6191c1f037666dd0
SHA1

aab7fc07c593b096f9c694f9677106a783e154eb
SHA256

ce6aec4af217cafcd65ccebe6ae46d53888e7425fdc4b73706fae8eb09d1ba6d
SHA512

8b9c78b451650f0165281848ccf32bbadddbc21e8dcf3699e8765945ad3ef5fe86a5d4147fdf0e6ea4d2cbb6cf50a40b787547059283d28fbcf473dec67adb23
SSDEEP

1536:nSHzOhaMwwMj5XFFhHGKTjvDQT7m4LO++/+1m6KadhYxU33HX0L:SHzsaDKKDQT/LrCimBaH8UH30L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f099e64c8a431cae6191c1f037666dd0_NEIKI
- Size
  
  81KB
- MD5
  
  f099e64c8a431cae6191c1f037666dd0
- SHA1
  
  aab7fc07c593b096f9c694f9677106a783e154eb
- SHA256
  
  ce6aec4af217cafcd65ccebe6ae46d53888e7425fdc4b73706fae8eb09d1ba6d
- SHA512
  
  8b9c78b451650f0165281848ccf32bbadddbc21e8dcf3699e8765945ad3ef5fe86a5d4147fdf0e6ea4d2cbb6cf50a40b787547059283d28fbcf473dec67adb23
- SSDEEP
  
  1536:nSHzOhaMwwMj5XFFhHGKTjvDQT7m4LO++/+1m6KadhYxU33HX0L:SHzsaDKKDQT/LrCimBaH8UH30L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2