General

  • Target

    da675f53b2e8b3e659cacbd45a582490_NeikiAnalytics.exe

  • Size

    72KB

  • MD5

    da675f53b2e8b3e659cacbd45a582490

  • SHA1

    3aecb5dd2f3bd40eaec9fbb2cc9bfa13b6217bf5

  • SHA256

    32c51b6e47236da2924798e528b571dfabefcb0bc98ddcdecf526dffff19c3fe

  • SHA512

    57dd40b6a8e5e60f0f46fd68cb3eb0c11b3473409b8762bf1bad64dbc251e9b35b2107d985fc8decb3da61839edc03aeff5210ad1166a282d4dee22a2412538e

  • SSDEEP

    1536:I42zfjTvM6+kC/T87O8Lwt6nmHVNb+LgT2re0DPQMb+KR0Nc8QsJq39:0z/Ikub8LoNHVNb7TuFDPQe0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.238.128:4444

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • da675f53b2e8b3e659cacbd45a582490_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections