8629eb6fb3a60f7b52a4465b93bc44f9e83dbdd3fa107db5fe47ca8108b03360 | Triage

Sharing

General

Target

02c8e5f35aa232856b2574900b5acb90_NEIKI
Size

112KB
Sample

240509-k12gkach43
MD5

02c8e5f35aa232856b2574900b5acb90
SHA1

99ff044dae00f67f34567bede345b8de0f91047f
SHA256

8629eb6fb3a60f7b52a4465b93bc44f9e83dbdd3fa107db5fe47ca8108b03360
SHA512

e28c05ccfe0bef853baccd0093dc92f8ddb2261ae1c38dbc8b5d809defd1b2e8d627391f04c7bdb3a19f0e96221a654d4972e101ca6ef4286dcaba75c097630d
SSDEEP

1536:jEqhmfjE/nWWyxGPsJU08uw57/FwcDuP83YPpBFRqikRynlypv8LIuCseNIQ:HhqjEWdGUiow7/FTDudRq+lc802eSQ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  02c8e5f35aa232856b2574900b5acb90_NEIKI
- Size
  
  112KB
- MD5
  
  02c8e5f35aa232856b2574900b5acb90
- SHA1
  
  99ff044dae00f67f34567bede345b8de0f91047f
- SHA256
  
  8629eb6fb3a60f7b52a4465b93bc44f9e83dbdd3fa107db5fe47ca8108b03360
- SHA512
  
  e28c05ccfe0bef853baccd0093dc92f8ddb2261ae1c38dbc8b5d809defd1b2e8d627391f04c7bdb3a19f0e96221a654d4972e101ca6ef4286dcaba75c097630d
- SSDEEP
  
  1536:jEqhmfjE/nWWyxGPsJU08uw57/FwcDuP83YPpBFRqikRynlypv8LIuCseNIQ:HhqjEWdGUiow7/FTDudRq+lc802eSQ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2