General

  • Target

    2ec34ec55d061779abfb0efcb0f2af70_NeikiAnalytics.exe

  • Size

    816KB

  • Sample

    240528-dbc94sdb67

  • MD5

    2ec34ec55d061779abfb0efcb0f2af70

  • SHA1

    bb3a163d51bf33fccd7f9a7920fff411ab6708d6

  • SHA256

    5b2bf7d9cd87f126257242b87310edb76dd0f810afae26449dd3baf6037891c3

  • SHA512

    05138abcfb6e1980735a6637117a9bb32c43231f5b895d73676acbfbc9e112e6758cbfcbb8486a122694666c254a7c4bf9ee92049cc53f79e234cf144f3fcb75

  • SSDEEP

    12288:0YqFvR0CDjWyr2W0LD1C+EPaRfOR6hZamcKLi4n6hyTeBUH:0YGp+yr2JD1C+DRI4WKH6ye

Score
10/10

Malware Config

Targets

    • Target

      2ec34ec55d061779abfb0efcb0f2af70_NeikiAnalytics.exe

    • Size

      816KB

    • MD5

      2ec34ec55d061779abfb0efcb0f2af70

    • SHA1

      bb3a163d51bf33fccd7f9a7920fff411ab6708d6

    • SHA256

      5b2bf7d9cd87f126257242b87310edb76dd0f810afae26449dd3baf6037891c3

    • SHA512

      05138abcfb6e1980735a6637117a9bb32c43231f5b895d73676acbfbc9e112e6758cbfcbb8486a122694666c254a7c4bf9ee92049cc53f79e234cf144f3fcb75

    • SSDEEP

      12288:0YqFvR0CDjWyr2W0LD1C+EPaRfOR6hZamcKLi4n6hyTeBUH:0YGp+yr2JD1C+DRI4WKH6ye

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks