General

  • Target

    8a2daccc995a40be2d6efa1dae218670_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240619-fbs2nsydln

  • MD5

    8a2daccc995a40be2d6efa1dae218670

  • SHA1

    96c050da1325c92f918a5e651e9e41cf92d9badf

  • SHA256

    7079f9ee6cd178d26061454e8fc86227c3a84c30d4ba2f8f7af98c6e1fdbcbd0

  • SHA512

    6547ea91e0ef8ced942fef28c6f7d3f0b57ee26964bb9932a600c4ce342cb362db47312eb3d00e135839e80ec867a30eb7baadadba14f325749c8d6cf02c0de9

  • SSDEEP

    1536:IzcJtJ8qnptpFbWhZ8ZxMb+KR0Nc8QsJq39:ekteqnpt7bkyZxe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.56.101:5555

Targets

    • Target

      8a2daccc995a40be2d6efa1dae218670_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      8a2daccc995a40be2d6efa1dae218670

    • SHA1

      96c050da1325c92f918a5e651e9e41cf92d9badf

    • SHA256

      7079f9ee6cd178d26061454e8fc86227c3a84c30d4ba2f8f7af98c6e1fdbcbd0

    • SHA512

      6547ea91e0ef8ced942fef28c6f7d3f0b57ee26964bb9932a600c4ce342cb362db47312eb3d00e135839e80ec867a30eb7baadadba14f325749c8d6cf02c0de9

    • SSDEEP

      1536:IzcJtJ8qnptpFbWhZ8ZxMb+KR0Nc8QsJq39:ekteqnpt7bkyZxe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks