General

  • Target

    a80859f80cb2d9bf5a568a1db95f9120_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240617-ss5s1sygnq

  • MD5

    a80859f80cb2d9bf5a568a1db95f9120

  • SHA1

    a626280c0edb98ac1c88f521f0bae830ad7935c3

  • SHA256

    0c95d3ecb28be901236c46ed3578d762f58a521dbf0deb0ae3f8fad566de4880

  • SHA512

    8a47acc33a80b9286d941be7d0599905f55ab4675ccb74af1d0d8e0e373e523c0944e41deddecc0893da2eae7cecc661c6c35bd43cf6e95722ef214b696b1ea4

  • SSDEEP

    1536:Io86CK653mqFjYYvVspnaVUajsUlYaRMb+KR0Nc8QsJq39:MscvFjY4enaVmj4e0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_http

C2

http://192.168.1.8:8080/uOyHq7RcBBq6F7sW3HxihwOxTaqRfNafUws7neWR7h6AlwDT2aV9vhkohTksv55Vvk8U4nPd501VdTDbxFsx3BnXboG-MMe6ZBLWVpfIqEBh5qW0c_OTKqKv6qakWNSaGD

Targets

    • Target

      a80859f80cb2d9bf5a568a1db95f9120_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      a80859f80cb2d9bf5a568a1db95f9120

    • SHA1

      a626280c0edb98ac1c88f521f0bae830ad7935c3

    • SHA256

      0c95d3ecb28be901236c46ed3578d762f58a521dbf0deb0ae3f8fad566de4880

    • SHA512

      8a47acc33a80b9286d941be7d0599905f55ab4675ccb74af1d0d8e0e373e523c0944e41deddecc0893da2eae7cecc661c6c35bd43cf6e95722ef214b696b1ea4

    • SSDEEP

      1536:Io86CK653mqFjYYvVspnaVUajsUlYaRMb+KR0Nc8QsJq39:MscvFjY4enaVmj4e0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks