General

  • Target

    b6eb76618528a888c7492e8143682430_NeikiAnalytics

  • Size

    501KB

  • Sample

    240510-lgj9lsfb2z

  • MD5

    b6eb76618528a888c7492e8143682430

  • SHA1

    347d4345d9bb920b9615782f5e959b462e6d4899

  • SHA256

    25d829a1fad8e38812e0fb0a34f3c0d61ba403a29d25e30a433f99568bbfc10e

  • SHA512

    409f84ead15101630fcee855c2bd706ff55928219b34e23750aac21d8528e0c072cf90312240755a0303e5f44b27b7d804ec16fdda0145b00189b5e4b38e3ee5

  • SSDEEP

    12288:DIteUui7R0/fEUlJeE2Ruk8bX9Ce8g6z33N:y3UveE2RX8ceuzH

Score
10/10

Malware Config

Targets

    • Target

      b6eb76618528a888c7492e8143682430_NeikiAnalytics

    • Size

      501KB

    • MD5

      b6eb76618528a888c7492e8143682430

    • SHA1

      347d4345d9bb920b9615782f5e959b462e6d4899

    • SHA256

      25d829a1fad8e38812e0fb0a34f3c0d61ba403a29d25e30a433f99568bbfc10e

    • SHA512

      409f84ead15101630fcee855c2bd706ff55928219b34e23750aac21d8528e0c072cf90312240755a0303e5f44b27b7d804ec16fdda0145b00189b5e4b38e3ee5

    • SSDEEP

      12288:DIteUui7R0/fEUlJeE2Ruk8bX9Ce8g6z33N:y3UveE2RX8ceuzH

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks