metasploit | 61762cc890146427b45237192c0450f2e01460e3d9d9d4d22ae64483a9e70875

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
24-05-2024 21:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d10de8158f3c01c169337dffc50f7250_NeikiAnalytics.exe
Size

72KB
MD5

d10de8158f3c01c169337dffc50f7250
SHA1

bbaf6a6beb9458cc6b4ca0598e7c9eeaaa099b5e
SHA256

61762cc890146427b45237192c0450f2e01460e3d9d9d4d22ae64483a9e70875
SHA512

1c284fedf6a570276f4fd9b08ce15130d530408195a4586faf3327000f775ce41e94a7710bcc685b4878928a4b4e3949b83f3169eaa2b750d275858d416e0537
SSDEEP

1536:IeGtJlmcoVlnruyj7LAgOWNgd1MLnFASMb+KR0Nc8QsJq39:KT+buyHQ1bMLniSe0Nc8QsC9

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

http://10.10.10.1:443/ZuiQm3hTopJMy03KKtPAOAsCxJHIkstHkm0pi9x0jvQ4cGRmuMQY2UPZsj8HV4lBMoS8hw_nrm8O2vBUXX8gXLLEIrSYsDvZqtFMebzvNyiLi3TuHCEuG59Oswa2tRkqftjzhvSLGbbuGQNp-_bGIREY4jSJ4BU6SAw_m3y8sjIWP9C3lqRlPkCd59L2crc

Signatures

MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
trojan backdoor metasploit

C:\Users\Admin\AppData\Local\Temp\d10de8158f3c01c169337dffc50f7250_NeikiAnalytics.exe
"C:\Users\Admin\AppData\Local\Temp\d10de8158f3c01c169337dffc50f7250_NeikiAnalytics.exe"
1⤵
PID:208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/208-0-0x0000000000490000-0x0000000000491000-memory.dmp

Filesize
4KB

Download