1ee668eb89632185f28405f9edc7db30abc49c96f0d93b4dc69f622eca989df5 | Triage

Sharing

General

Target

4f16eebf4982df073947cec7046f67c0_NeikiAnalytics
Size

137KB
Sample

240510-xwz46afh25
MD5

4f16eebf4982df073947cec7046f67c0
SHA1

8fd390d5d40d623e827f68d7b72b61d2a58bb8aa
SHA256

1ee668eb89632185f28405f9edc7db30abc49c96f0d93b4dc69f622eca989df5
SHA512

9fac10c53ee677c67b07d8062d23f46d9255a710d76934cd0caa2da099e1dea77e282ea8d348b8850adb31b78213f8b6e45a0d56abb824c75e0d8b12d7bc03a1
SSDEEP

3072:AE9ByF5wP7Ht99mbaa+vKAzWvSVJSwpi6DsY:7907wTr9mea+i6WKQA

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  4f16eebf4982df073947cec7046f67c0_NeikiAnalytics
- Size
  
  137KB
- MD5
  
  4f16eebf4982df073947cec7046f67c0
- SHA1
  
  8fd390d5d40d623e827f68d7b72b61d2a58bb8aa
- SHA256
  
  1ee668eb89632185f28405f9edc7db30abc49c96f0d93b4dc69f622eca989df5
- SHA512
  
  9fac10c53ee677c67b07d8062d23f46d9255a710d76934cd0caa2da099e1dea77e282ea8d348b8850adb31b78213f8b6e45a0d56abb824c75e0d8b12d7bc03a1
- SSDEEP
  
  3072:AE9ByF5wP7Ht99mbaa+vKAzWvSVJSwpi6DsY:7907wTr9mea+i6WKQA
Score

8^/10

aspackv2 persistence
- Modifies AppInit DLL entries
  persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence