General

  • Target

    740e34228d7871bcb7359f72464d8320_NeikiAnalytics.exe

  • Size

    80KB

  • Sample

    240526-gebggagh3t

  • MD5

    740e34228d7871bcb7359f72464d8320

  • SHA1

    84918302c5b4c3716ab4095525e3f3bcb92d7190

  • SHA256

    130611cab28ce195abd4e7e36bf64bbc55c5cdb56fae47216514566905f18736

  • SHA512

    a865b52dc0d70fe78aaef953b1a60e796792efca3c449efb00f2f43e3fd1c9d58dba7cf1a15cb7efe878f213fc7539add43f3f52ed2d65cce069860ba6397ee6

  • SSDEEP

    1536:DSwNE6vqTg1pvNeFrCiPZuDVKR/70933o1TvxEo3kZcH:DNJrlsPZSVScoEogcH

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://62.112.130.165:8080/pony/gate.php

http://83.174.131.142:8080/pony/gate.php

Attributes
  • payload_url

    http://gnarlybuys.info/LMbir.exe

    http://mancomunidadcentro.org.bo/wN7iM.exe

    http://100s.pl/jQnoeUC.exe

    http://medyapark.com.tr/w9CTkwA.exe

Targets

    • Target

      740e34228d7871bcb7359f72464d8320_NeikiAnalytics.exe

    • Size

      80KB

    • MD5

      740e34228d7871bcb7359f72464d8320

    • SHA1

      84918302c5b4c3716ab4095525e3f3bcb92d7190

    • SHA256

      130611cab28ce195abd4e7e36bf64bbc55c5cdb56fae47216514566905f18736

    • SHA512

      a865b52dc0d70fe78aaef953b1a60e796792efca3c449efb00f2f43e3fd1c9d58dba7cf1a15cb7efe878f213fc7539add43f3f52ed2d65cce069860ba6397ee6

    • SSDEEP

      1536:DSwNE6vqTg1pvNeFrCiPZuDVKR/70933o1TvxEo3kZcH:DNJrlsPZSVScoEogcH

    Score
    3/10

MITRE ATT&CK Matrix

Tasks