General

  • Target

    9995a1c7bbb437864fa1d5e8c32c8ba0_NeikiAnalytics

  • Size

    950KB

  • Sample

    240510-ht2smshb71

  • MD5

    9995a1c7bbb437864fa1d5e8c32c8ba0

  • SHA1

    c4fe7e617d98654a52d3563354a8cae1cc03aa11

  • SHA256

    77cfd549c3faf8f9341599a252ee257a99003b87f99eb7e23df1ccc890c04fbd

  • SHA512

    24c110e29d08da636ef30ead368c8a154726f7384ad42cf39434b3dc640314fb5e02e331e3f5121cc39d96fbb4e9561bd83328dbd5f54fcd420d18697137470e

  • SSDEEP

    12288:V2lWRP6hA9PRWg93MgCsQFNDwW94FDOPzgQdOkLfC:V2lm64RrMgC9wWKDOP8Qdz

Score
10/10

Malware Config

Targets

    • Target

      9995a1c7bbb437864fa1d5e8c32c8ba0_NeikiAnalytics

    • Size

      950KB

    • MD5

      9995a1c7bbb437864fa1d5e8c32c8ba0

    • SHA1

      c4fe7e617d98654a52d3563354a8cae1cc03aa11

    • SHA256

      77cfd549c3faf8f9341599a252ee257a99003b87f99eb7e23df1ccc890c04fbd

    • SHA512

      24c110e29d08da636ef30ead368c8a154726f7384ad42cf39434b3dc640314fb5e02e331e3f5121cc39d96fbb4e9561bd83328dbd5f54fcd420d18697137470e

    • SSDEEP

      12288:V2lWRP6hA9PRWg93MgCsQFNDwW94FDOPzgQdOkLfC:V2lm64RrMgC9wWKDOP8Qdz

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks