General

  • Target

    a6899e80cf73a2b952456d8af4970540_NeikiAnalytics.exe

  • Size

    1.4MB

  • Sample

    240617-smvqvsvdlc

  • MD5

    a6899e80cf73a2b952456d8af4970540

  • SHA1

    e0784c843854fafc5110b047c62abcfd0462785f

  • SHA256

    127e8f6e8ed87aa42cdd1a8a089c190e84f69a318402916f7989f8ed821a4a88

  • SHA512

    e90a9acfc64d829ac285102ba41a9e2291bf7e7281898f5f91d257e4daf7b525302818b03eb1010baa7fc21f9bebd615715dfeb0e6862fc1dac9207a366eeb77

  • SSDEEP

    24576:8WzNpYIUzAcFZPVUw1L9ub0VsfMzXGk1GUzwglaPIJdTaKIe0MStS/o6ui2O:/c3vpJSMwgAk8KIeVSc/zui

Malware Config

Extracted

Family

metasploit

Version

windows/shell_reverse_tcp

C2

10.10.10.10:5588

Targets

    • Target

      a6899e80cf73a2b952456d8af4970540_NeikiAnalytics.exe

    • Size

      1.4MB

    • MD5

      a6899e80cf73a2b952456d8af4970540

    • SHA1

      e0784c843854fafc5110b047c62abcfd0462785f

    • SHA256

      127e8f6e8ed87aa42cdd1a8a089c190e84f69a318402916f7989f8ed821a4a88

    • SHA512

      e90a9acfc64d829ac285102ba41a9e2291bf7e7281898f5f91d257e4daf7b525302818b03eb1010baa7fc21f9bebd615715dfeb0e6862fc1dac9207a366eeb77

    • SSDEEP

      24576:8WzNpYIUzAcFZPVUw1L9ub0VsfMzXGk1GUzwglaPIJdTaKIe0MStS/o6ui2O:/c3vpJSMwgAk8KIeVSc/zui

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks