Overview

overview

10

Static

static

10

64f3e8fc6c...cs.exe

windows7-x64

10

64f3e8fc6c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    64f3e8fc6c22078be72727cbe0c60050_NeikiAnalytics

  • Size

    72KB

  • Sample

    240510-ywhesafb51

  • MD5

    64f3e8fc6c22078be72727cbe0c60050

  • SHA1

    a28ade8adfeb04f0de51c31ddc5589234df1d526

  • SHA256

    a7606d15c0c35a532a08de8df59186ac9cdd99bcd4aaa527484e6feec01e771d

  • SHA512

    888b309b5c8dd17a012e6dc46c027e1229a62da2b4bdf610e7ca63c4d271daf8e6648ce14fecadc9b6fcc31af9593a187f2176b012a900c31892fc24ed1ebb7b

  • SSDEEP

    1536:IqXv4uD1sD8MGxY+V/zXTMTCEcm1nMb+KR0Nc8QsJq39:5Xv4iAuYM/zXwTR7ne0Nc8QsC9

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Extracted

Family

metasploit

Version

encoder/fnstenv_mov

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Targets

    • Target

      64f3e8fc6c22078be72727cbe0c60050_NeikiAnalytics

    • Size

      72KB

    • MD5

      64f3e8fc6c22078be72727cbe0c60050

    • SHA1

      a28ade8adfeb04f0de51c31ddc5589234df1d526

    • SHA256

      a7606d15c0c35a532a08de8df59186ac9cdd99bcd4aaa527484e6feec01e771d

    • SHA512

      888b309b5c8dd17a012e6dc46c027e1229a62da2b4bdf610e7ca63c4d271daf8e6648ce14fecadc9b6fcc31af9593a187f2176b012a900c31892fc24ed1ebb7b

    • SSDEEP

      1536:IqXv4uD1sD8MGxY+V/zXTMTCEcm1nMb+KR0Nc8QsJq39:5Xv4iAuYM/zXwTR7ne0Nc8QsC9

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks