Analysis
-
max time kernel
121s -
max time network
125s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
22-06-2024 22:29
Behavioral task
behavioral1
Sample
15c701b4a4f924289f3a3daeb61fdad9be24210cfb6f04d2c9bfffb1555b034d_NeikiAnalytics.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
15c701b4a4f924289f3a3daeb61fdad9be24210cfb6f04d2c9bfffb1555b034d_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
15c701b4a4f924289f3a3daeb61fdad9be24210cfb6f04d2c9bfffb1555b034d_NeikiAnalytics.exe
-
Size
72KB
-
MD5
095e3cc3e1549fe747462232b71b1110
-
SHA1
a1f40008e97b64cc1e4fac08d6ab9670e7b8e549
-
SHA256
15c701b4a4f924289f3a3daeb61fdad9be24210cfb6f04d2c9bfffb1555b034d
-
SHA512
610f2c2ea884a406343614a23e2af38c8def94cd3229947d40f426640dda3033390c42ea7739bd210129f2cc36aba64cbc99be5a04da16eee89d5f4febff213d
-
SSDEEP
1536:I8zqTCKkxPHd2EuxGxw2Mb+KR0Nc8QsJq39:BzqTC/VXu6w2e0Nc8QsC9
Malware Config
Extracted
metasploit
windows/reverse_tcp
127.0.0.1:4444
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.