7869924b70ca08c287cccb42d2842496881e08a8145797422beac93c37062781 | Triage

Sharing

General

Target

e372907a07955ec7f1b11fa741f040b0_NeikiAnalytics
Size

190KB
Sample

240509-yp3r5sbg4v
MD5

e372907a07955ec7f1b11fa741f040b0
SHA1

1ba1dfff2279ab148e3af687632e317b4e97a84c
SHA256

7869924b70ca08c287cccb42d2842496881e08a8145797422beac93c37062781
SHA512

6551d7ba9d76efb924ef2f5df634dabe9a74f4439ae6fd724a6b87a3cdc027271ea3f0782835f9f3f6eede8069f17492bef7f8c3d29dc5e4c5d0275376900ad2
SSDEEP

3072:rYubs4vIPfIOKyCRfyJiJJMXybJg30TZZ+MbpqdNjfBDckH8sbigzwQjoE:Euk6fK6tixMbwNL+kDr/

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  e372907a07955ec7f1b11fa741f040b0_NeikiAnalytics
- Size
  
  190KB
- MD5
  
  e372907a07955ec7f1b11fa741f040b0
- SHA1
  
  1ba1dfff2279ab148e3af687632e317b4e97a84c
- SHA256
  
  7869924b70ca08c287cccb42d2842496881e08a8145797422beac93c37062781
- SHA512
  
  6551d7ba9d76efb924ef2f5df634dabe9a74f4439ae6fd724a6b87a3cdc027271ea3f0782835f9f3f6eede8069f17492bef7f8c3d29dc5e4c5d0275376900ad2
- SSDEEP
  
  3072:rYubs4vIPfIOKyCRfyJiJJMXybJg30TZZ+MbpqdNjfBDckH8sbigzwQjoE:Euk6fK6tixMbwNL+kDr/
Score

8^/10

aspackv2 persistence
- Modifies AppInit DLL entries
  persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence