metasploit | a33551fbd9fedef84b5498a7dcf7694a7901f5bc3248321af8ad43be86ddeb24 | Triage

Submit
Reports

Overview

overview

Static

static

8389d8feea...cs.exe

windows7-x64

8389d8feea...cs.exe

windows10-2004-x64

Sharing

General

Target

8389d8feea421cfb727c0b7116753e30_NeikiAnalytics
Size

9KB
Sample

240516-c7tfjaha72
MD5

8389d8feea421cfb727c0b7116753e30
SHA1

7716a2a9ec8aba35117bb552f30a7ae93fb315fa
SHA256

a33551fbd9fedef84b5498a7dcf7694a7901f5bc3248321af8ad43be86ddeb24
SHA512

65de43b44fc34f5947e1ec1e17b141ea09070ff157f4fbcd8cbd68335a5ef3529b397cd6f1e22c247cbafa69b09ccfa07a0a02dafa1ecaa8540e224ae5d731e5
SSDEEP

192:GSEZcwOQTHDWJrjjOtI7E5pz6fMTBJZtQ:iZlTKJrjjr7a4

Score

10^/10

metasploit backdoor trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

8389d8feea421cfb727c0b7116753e30_NeikiAnalytics.exe

Resource

win7-20240215-en

metasploit backdoor trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

8389d8feea421cfb727c0b7116753e30_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

metasploit backdoor trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.6:4444

Targets

- Target
  
  8389d8feea421cfb727c0b7116753e30_NeikiAnalytics
- Size
  
  9KB
- MD5
  
  8389d8feea421cfb727c0b7116753e30
- SHA1
  
  7716a2a9ec8aba35117bb552f30a7ae93fb315fa
- SHA256
  
  a33551fbd9fedef84b5498a7dcf7694a7901f5bc3248321af8ad43be86ddeb24
- SHA512
  
  65de43b44fc34f5947e1ec1e17b141ea09070ff157f4fbcd8cbd68335a5ef3529b397cd6f1e22c247cbafa69b09ccfa07a0a02dafa1ecaa8540e224ae5d731e5
- SSDEEP
  
  192:GSEZcwOQTHDWJrjjOtI7E5pz6fMTBJZtQ:iZlTKJrjjr7a4
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan

© 2018-2024

Terms | Privacy