cca3a65876ae466e33bfb1a50dbd2ae1936778df3eb1e705c382612bd3ceb642 | Triage

Sharing

General

Target

74b4aa44c68be06c36a4935578b71391_NEIKI
Size

290KB
Sample

240509-pq7m2shg2y
MD5

74b4aa44c68be06c36a4935578b71391
SHA1

33dec1b16a2ed6be063112bfbc7e42d0cdc56640
SHA256

cca3a65876ae466e33bfb1a50dbd2ae1936778df3eb1e705c382612bd3ceb642
SHA512

1265a100f8416edd760b809ec2354217c485ccb802c2a8377d570d2009410e3bbe2bb855fe6598b4bf09651f6005584240cc69abd69d8ea519ba2a3df6d12be2
SSDEEP

6144:BQZWKC4K+wxnEgHhkwmjEUmKyIxLDXXoq9FJZCUmKyIxL:9KC43wxnEgBTF32XXf9Do3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  74b4aa44c68be06c36a4935578b71391_NEIKI
- Size
  
  290KB
- MD5
  
  74b4aa44c68be06c36a4935578b71391
- SHA1
  
  33dec1b16a2ed6be063112bfbc7e42d0cdc56640
- SHA256
  
  cca3a65876ae466e33bfb1a50dbd2ae1936778df3eb1e705c382612bd3ceb642
- SHA512
  
  1265a100f8416edd760b809ec2354217c485ccb802c2a8377d570d2009410e3bbe2bb855fe6598b4bf09651f6005584240cc69abd69d8ea519ba2a3df6d12be2
- SSDEEP
  
  6144:BQZWKC4K+wxnEgHhkwmjEUmKyIxLDXXoq9FJZCUmKyIxL:9KC43wxnEgBTF32XXf9Do3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2