Overview

overview

10

Static

static

3

ba0d3427a7...KI.exe

windows7-x64

10

ba0d3427a7...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ba0d3427a7b32171803a8652805596d4_NEIKI

  • Size

    315KB

  • Sample

    240509-ptj16acg52

  • MD5

    ba0d3427a7b32171803a8652805596d4

  • SHA1

    c6b15af3aa552e9439b78ce60667d6f6c9c509c1

  • SHA256

    a836fe07a53a78fe6a70a8077eac9ba4b73c10c9a8ab8cf16953fcae0ce0f7c8

  • SHA512

    21d9bb30f91fed08edb71c08b3c89f957d452add7877359bd1331caedb52ee0870566fbe803e21cbe66af5dc3ba7ec33d1469f86ce1eb903c617439580ffc2f7

  • SSDEEP

    3072:BKyUdkT3Etq749+f4auvZ7LC4ZR4mqmnKBstqBiPXPAPePdfVQ:cxS0tqI+stesMmG

Score
10/10
persistence

Malware Config

Targets

    • Target

      ba0d3427a7b32171803a8652805596d4_NEIKI

    • Size

      315KB

    • MD5

      ba0d3427a7b32171803a8652805596d4

    • SHA1

      c6b15af3aa552e9439b78ce60667d6f6c9c509c1

    • SHA256

      a836fe07a53a78fe6a70a8077eac9ba4b73c10c9a8ab8cf16953fcae0ce0f7c8

    • SHA512

      21d9bb30f91fed08edb71c08b3c89f957d452add7877359bd1331caedb52ee0870566fbe803e21cbe66af5dc3ba7ec33d1469f86ce1eb903c617439580ffc2f7

    • SSDEEP

      3072:BKyUdkT3Etq749+f4auvZ7LC4ZR4mqmnKBstqBiPXPAPePdfVQ:cxS0tqI+stesMmG

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks