metasploit | 0992fa3b300007c6604852da94e1fc222a12de29026cd298dee03720b1dec7ff | Triage

Sharing

General

Target

8c2267fb31d3863a57302828880720b0_NeikiAnalytics.exe
Size

6.5MB
Sample

240601-d837ssgf7w
MD5

8c2267fb31d3863a57302828880720b0
SHA1

7301f3acd8cca8f32121ec2d827b927b24125906
SHA256

0992fa3b300007c6604852da94e1fc222a12de29026cd298dee03720b1dec7ff
SHA512

8c2f2d9e747bd738c87b9f4215194bb1cb6fac7ebb3bdc3be48466cfef7e9faa68cc0ea37583e678ae9ccdf35510d7afcd0d2a53b8696f8291ee4e1fd3e1f047
SSDEEP

98304:yc/Te8kgMYsdMwHBFRY1FzeVjzhJqQKD3qLsPme:z/68cecLjm

Score

10^/10

metasploit backdoor trojan

Malware Config

Extracted

Family

metasploit

Version

windows/download_exec

C2

http://23.225.161.56:12314/l2uI

Attributes

headers User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0; MANM)

Targets

- Target
  
  8c2267fb31d3863a57302828880720b0_NeikiAnalytics.exe
- Size
  
  6.5MB
- MD5
  
  8c2267fb31d3863a57302828880720b0
- SHA1
  
  7301f3acd8cca8f32121ec2d827b927b24125906
- SHA256
  
  0992fa3b300007c6604852da94e1fc222a12de29026cd298dee03720b1dec7ff
- SHA512
  
  8c2f2d9e747bd738c87b9f4215194bb1cb6fac7ebb3bdc3be48466cfef7e9faa68cc0ea37583e678ae9ccdf35510d7afcd0d2a53b8696f8291ee4e1fd3e1f047
- SSDEEP
  
  98304:yc/Te8kgMYsdMwHBFRY1FzeVjzhJqQKD3qLsPme:z/68cecLjm
Score

10^/10

metasploit backdoor trojan
- MetaSploit
  Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
  trojan backdoor metasploit
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

metasploitbackdoortrojan

behavioral2

metasploitbackdoortrojan