e205dadfa0ad4b1de6c207bb724ccb5ef24aecc77333a260c82be5df892fd8dd | Triage

Sharing

General

Target

e4891010d348a9295316f7965bc800f0_NEIKI
Size

1020KB
Sample

240509-edagnsbh46
MD5

e4891010d348a9295316f7965bc800f0
SHA1

b1614b3e657f4c29ae93bb03403dd88affc61074
SHA256

e205dadfa0ad4b1de6c207bb724ccb5ef24aecc77333a260c82be5df892fd8dd
SHA512

307f6da7fcebb5a9cab6344a242bd02f65937cb7c4d6ea14b3726d4715b4b96f3ce816b711b2d5a3229ab2f706e107b31d6785888319859808f4377d5e369908
SSDEEP

24576:wYLYFXPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZl:rYFnbazR0vKLXL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e4891010d348a9295316f7965bc800f0_NEIKI
- Size
  
  1020KB
- MD5
  
  e4891010d348a9295316f7965bc800f0
- SHA1
  
  b1614b3e657f4c29ae93bb03403dd88affc61074
- SHA256
  
  e205dadfa0ad4b1de6c207bb724ccb5ef24aecc77333a260c82be5df892fd8dd
- SHA512
  
  307f6da7fcebb5a9cab6344a242bd02f65937cb7c4d6ea14b3726d4715b4b96f3ce816b711b2d5a3229ab2f706e107b31d6785888319859808f4377d5e369908
- SSDEEP
  
  24576:wYLYFXPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZl:rYFnbazR0vKLXL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2