76f0c29d4b1ebd99a8e87c93b81f691e289543d39eb2fa8a9a61fe6425e3a6b3 | Triage

Sharing

General

Target

0512bb09764262422bde2eb72b227f80_NEIKI
Size

416KB
Sample

240509-k45cmada79
MD5

0512bb09764262422bde2eb72b227f80
SHA1

d49fab9df0375be1346698bec5fe49d1050899eb
SHA256

76f0c29d4b1ebd99a8e87c93b81f691e289543d39eb2fa8a9a61fe6425e3a6b3
SHA512

5f9d3781787d3cceebf1280610bb547e46b232c5da2782ca9bf6c237fd5f4dc97372873c22eb9984d21ab7d81e3cc24b91fe0589668a7baa04c3f6460ff3e2c8
SSDEEP

6144:WEJ0SauVFNgfzRs+HLlD0rN2ZwVht740PP:Wc0FuR6HpoxsoP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0512bb09764262422bde2eb72b227f80_NEIKI
- Size
  
  416KB
- MD5
  
  0512bb09764262422bde2eb72b227f80
- SHA1
  
  d49fab9df0375be1346698bec5fe49d1050899eb
- SHA256
  
  76f0c29d4b1ebd99a8e87c93b81f691e289543d39eb2fa8a9a61fe6425e3a6b3
- SHA512
  
  5f9d3781787d3cceebf1280610bb547e46b232c5da2782ca9bf6c237fd5f4dc97372873c22eb9984d21ab7d81e3cc24b91fe0589668a7baa04c3f6460ff3e2c8
- SSDEEP
  
  6144:WEJ0SauVFNgfzRs+HLlD0rN2ZwVht740PP:Wc0FuR6HpoxsoP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2