General

  • Target

    901300b4e73c514189a645f305234e9eedb6c7d40ccf6aad6f4eb23cfeb95d48_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240622-l2whdashra

  • MD5

    16337889dee886c0f61b6c39e9974980

  • SHA1

    c803e1bfc42e3f8a39540ff7e14ef60785dc1dcf

  • SHA256

    901300b4e73c514189a645f305234e9eedb6c7d40ccf6aad6f4eb23cfeb95d48

  • SHA512

    71ec1c51cdaa779699f6fe7a7ffa219cebc4b08a04a7c887ef570efde8d5ff0c076fb44a666c78e611b8dc204bb6f125e6a511031840f5ab7868eb7d4803ad1d

  • SSDEEP

    1536:ID8z+/Ghtm3g4yexnIxFULVL2mF1BMb+KR0Nc8QsJq39:r2IxGh2q1Be0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.167.34:4444

Targets

    • Target

      901300b4e73c514189a645f305234e9eedb6c7d40ccf6aad6f4eb23cfeb95d48_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      16337889dee886c0f61b6c39e9974980

    • SHA1

      c803e1bfc42e3f8a39540ff7e14ef60785dc1dcf

    • SHA256

      901300b4e73c514189a645f305234e9eedb6c7d40ccf6aad6f4eb23cfeb95d48

    • SHA512

      71ec1c51cdaa779699f6fe7a7ffa219cebc4b08a04a7c887ef570efde8d5ff0c076fb44a666c78e611b8dc204bb6f125e6a511031840f5ab7868eb7d4803ad1d

    • SSDEEP

      1536:ID8z+/Ghtm3g4yexnIxFULVL2mF1BMb+KR0Nc8QsJq39:r2IxGh2q1Be0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks