General

  • Target

    4c97328ee00b87ba5669805a9c0bf190_NeikiAnalytics.exe

  • Size

    7KB

  • Sample

    240618-q1tplszfnl

  • MD5

    4c97328ee00b87ba5669805a9c0bf190

  • SHA1

    acad53754bbd44601046047151c3b80fd9250b02

  • SHA256

    1a7d549d257bf14a465b6533e9bcd9daaad8c2ed31a7469662f48ca7517d35ec

  • SHA512

    e6db25cf8291039bc4be3dbb1a4e6bbd07d81380c50429ce987ad9a7a172296192efbc744a090176935dcfa6f2f34894e06e63980fe3385ba089bae2cf6cecb5

  • SSDEEP

    24:eFGStrJ9u0/6pVPnZdkBQAVxOxLYKZqpeNDMSCvOXpmB:is0IVrkBQzxLYrSD9C2kB

Malware Config

Extracted

Family

metasploit

Version

metasploit_stager

C2

192.168.56.102:4444

Targets

    • Target

      4c97328ee00b87ba5669805a9c0bf190_NeikiAnalytics.exe

    • Size

      7KB

    • MD5

      4c97328ee00b87ba5669805a9c0bf190

    • SHA1

      acad53754bbd44601046047151c3b80fd9250b02

    • SHA256

      1a7d549d257bf14a465b6533e9bcd9daaad8c2ed31a7469662f48ca7517d35ec

    • SHA512

      e6db25cf8291039bc4be3dbb1a4e6bbd07d81380c50429ce987ad9a7a172296192efbc744a090176935dcfa6f2f34894e06e63980fe3385ba089bae2cf6cecb5

    • SSDEEP

      24:eFGStrJ9u0/6pVPnZdkBQAVxOxLYKZqpeNDMSCvOXpmB:is0IVrkBQzxLYrSD9C2kB

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks