33bcca4963612bb10c2c64d262b9939d2a1e596e8db408fe338d6299abe51bb5 | Triage

Sharing

General

Target

7c2827ed0020fe6dedb95d9b329de460_NeikiAnalytics
Size

138KB
Sample

240511-ez9hwsfg44
MD5

7c2827ed0020fe6dedb95d9b329de460
SHA1

a74123601a89166ac88abfdfea9e857903abefd9
SHA256

33bcca4963612bb10c2c64d262b9939d2a1e596e8db408fe338d6299abe51bb5
SHA512

41d3cf593736981260b356e6a1acf9e56d82898a98a66282b6b91cf3d72ea36b074d0ea1d3c78b65ab1dd11e018639646bb1b659f3fd536fbdee487a7db2a4e5
SSDEEP

3072:+OpFhrH21lww+dvnNjC5zxFiMxkqC4giUvQkuPcA1Khe2yU:Jp7H2fadvNu5zKIpC4gnvQkw71IyU

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  7c2827ed0020fe6dedb95d9b329de460_NeikiAnalytics
- Size
  
  138KB
- MD5
  
  7c2827ed0020fe6dedb95d9b329de460
- SHA1
  
  a74123601a89166ac88abfdfea9e857903abefd9
- SHA256
  
  33bcca4963612bb10c2c64d262b9939d2a1e596e8db408fe338d6299abe51bb5
- SHA512
  
  41d3cf593736981260b356e6a1acf9e56d82898a98a66282b6b91cf3d72ea36b074d0ea1d3c78b65ab1dd11e018639646bb1b659f3fd536fbdee487a7db2a4e5
- SSDEEP
  
  3072:+OpFhrH21lww+dvnNjC5zxFiMxkqC4giUvQkuPcA1Khe2yU:Jp7H2fadvNu5zKIpC4gnvQkw71IyU
Score

8^/10

aspackv2 persistence
- Modifies AppInit DLL entries
  persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence