Overview

overview

10

Static

static

3

1bec60c704...cs.exe

windows7-x64

10

1bec60c704...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1bec60c704d45ffa17e16df69a010a80_NeikiAnalytics

  • Size

    1.4MB

  • Sample

    240514-ywec5aea71

  • MD5

    1bec60c704d45ffa17e16df69a010a80

  • SHA1

    fd1bb353995b04248b3d88cb09cbcde84e3f1d8c

  • SHA256

    db0cb1297fc1fae4eb007193553795980af04fe0b0a0344e6534cbd4bc4f6c0b

  • SHA512

    b358f3b18c5bd3259eca35f4056ac215b02f4b2c290477182e172762e74a8e0d8fa49f7b680daabb7442b7cc3051faf868a216e98f3e3abe87c2b33c339299b7

  • SSDEEP

    24576:KWzNpYIUzAcFZPVUw1L9ub0VsfMzXGk1GUxwgBaPIJdTaKIe0MStS/o6ui2Ovh:Nc3vpJSWwgkk8KIeVSc/zui

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

172.16.1.237:20902

Targets

    • Target

      1bec60c704d45ffa17e16df69a010a80_NeikiAnalytics

    • Size

      1.4MB

    • MD5

      1bec60c704d45ffa17e16df69a010a80

    • SHA1

      fd1bb353995b04248b3d88cb09cbcde84e3f1d8c

    • SHA256

      db0cb1297fc1fae4eb007193553795980af04fe0b0a0344e6534cbd4bc4f6c0b

    • SHA512

      b358f3b18c5bd3259eca35f4056ac215b02f4b2c290477182e172762e74a8e0d8fa49f7b680daabb7442b7cc3051faf868a216e98f3e3abe87c2b33c339299b7

    • SSDEEP

      24576:KWzNpYIUzAcFZPVUw1L9ub0VsfMzXGk1GUxwgBaPIJdTaKIe0MStS/o6ui2Ovh:Nc3vpJSWwgkk8KIeVSc/zui

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks