f2f6110d2f38321ff8b8e2892de89691864dde34df08a8ef7d81b9d2f32cb067 | Triage

Sharing

General

Target

af0d35932370a8125d08336a05d209bd_NEIKI
Size

93KB
Sample

240509-ps4deacg24
MD5

af0d35932370a8125d08336a05d209bd
SHA1

84e4410e31aaa1de223469bdd8512834b2ac258f
SHA256

f2f6110d2f38321ff8b8e2892de89691864dde34df08a8ef7d81b9d2f32cb067
SHA512

287b238b30e60d47470709e081521128066f9dc0878e4333ffe8a6de0bce28becb51394b7bd22961319f6bffe363bea4f9aeb0c802428b622393dda3f0a0c915
SSDEEP

1536:QkG/RMaan2wLJDHKacfgUGZtv/O4sIW1o/sVyAoDoo3ooDooDooXooXooXooXjoH:SRE2sJDHKXozvFAoUT75xdMiwaIbbpkp

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  af0d35932370a8125d08336a05d209bd_NEIKI
- Size
  
  93KB
- MD5
  
  af0d35932370a8125d08336a05d209bd
- SHA1
  
  84e4410e31aaa1de223469bdd8512834b2ac258f
- SHA256
  
  f2f6110d2f38321ff8b8e2892de89691864dde34df08a8ef7d81b9d2f32cb067
- SHA512
  
  287b238b30e60d47470709e081521128066f9dc0878e4333ffe8a6de0bce28becb51394b7bd22961319f6bffe363bea4f9aeb0c802428b622393dda3f0a0c915
- SSDEEP
  
  1536:QkG/RMaan2wLJDHKacfgUGZtv/O4sIW1o/sVyAoDoo3ooDooDooXooXooXooXjoH:SRE2sJDHKXozvFAoUT75xdMiwaIbbpkp
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2