943bf264dd1d4a55bb2be75b138346bb8fd2fe88ef9269f31917dd03bc59b62c | Triage

Sharing

General

Target

fa9295d2f65007434100109389271170_NEIKI
Size

242KB
Sample

240509-flmyeaca3w
MD5

fa9295d2f65007434100109389271170
SHA1

2a598c158e92724cb0e4332076043c7737ebb674
SHA256

943bf264dd1d4a55bb2be75b138346bb8fd2fe88ef9269f31917dd03bc59b62c
SHA512

7c9e404ebc1713825926b0ce4300ad12efe09f96f3ac8473ff0fc33fc2149c9ca2a9778ef13525d4d818603b6656272275518b6c2329673efeecece0b998d002
SSDEEP

3072:bxJFJSTrUiAy6SBkVBV6V8ZLB6V16VKcWmjRrzKbKcWmjRrzK8VHkdYaM88KC:bxv8Ui36SBkVBV66LB6X62UyHEYa0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fa9295d2f65007434100109389271170_NEIKI
- Size
  
  242KB
- MD5
  
  fa9295d2f65007434100109389271170
- SHA1
  
  2a598c158e92724cb0e4332076043c7737ebb674
- SHA256
  
  943bf264dd1d4a55bb2be75b138346bb8fd2fe88ef9269f31917dd03bc59b62c
- SHA512
  
  7c9e404ebc1713825926b0ce4300ad12efe09f96f3ac8473ff0fc33fc2149c9ca2a9778ef13525d4d818603b6656272275518b6c2329673efeecece0b998d002
- SSDEEP
  
  3072:bxJFJSTrUiAy6SBkVBV6V8ZLB6V16VKcWmjRrzKbKcWmjRrzK8VHkdYaM88KC:bxv8Ui36SBkVBV66LB6X62UyHEYa0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2