Overview

overview

10

Static

static

10

3e2aa7c7e0...cs.exe

windows7-x64

10

3e2aa7c7e0...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e2aa7c7e0d45c3dce431240885c6060_NeikiAnalytics.exe

  • Size

    5KB

  • Sample

    240526-an42tafh3s

  • MD5

    3e2aa7c7e0d45c3dce431240885c6060

  • SHA1

    3abef12069fbd320980d2b3d4603648131e7becc

  • SHA256

    ed56a8cbe72e1fc31ce0fd2c9e2520ebb626772c6b503774a5e55327877c2901

  • SHA512

    62e0249d6f885da01a60faf12c6e0f31dc33b05a952768fffd62c0de224f48b736385544d128736888379298b5eba41ad24d2a174969a9ef7c93412f2983485a

  • SSDEEP

    48:61AYSh61gtnbMc+WbjeId5MVNMdyQPA2roVjmbReLY6SD9C2Y54tdt0lrq0aqQ6j:oSh61gFneIoShMVSkEt5440pEzNt

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.0.152:1122

Targets

    • Target

      3e2aa7c7e0d45c3dce431240885c6060_NeikiAnalytics.exe

    • Size

      5KB

    • MD5

      3e2aa7c7e0d45c3dce431240885c6060

    • SHA1

      3abef12069fbd320980d2b3d4603648131e7becc

    • SHA256

      ed56a8cbe72e1fc31ce0fd2c9e2520ebb626772c6b503774a5e55327877c2901

    • SHA512

      62e0249d6f885da01a60faf12c6e0f31dc33b05a952768fffd62c0de224f48b736385544d128736888379298b5eba41ad24d2a174969a9ef7c93412f2983485a

    • SSDEEP

      48:61AYSh61gtnbMc+WbjeId5MVNMdyQPA2roVjmbReLY6SD9C2Y54tdt0lrq0aqQ6j:oSh61gFneIoShMVSkEt5440pEzNt

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks