Analysis
-
max time kernel
120s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
23-06-2024 07:06
Behavioral task
behavioral1
Sample
4b25c1380b77ab7600d27f8069a4bf5b727ec3628b28b46e126e4013fa308da1_NeikiAnalytics.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
4b25c1380b77ab7600d27f8069a4bf5b727ec3628b28b46e126e4013fa308da1_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
General
-
Target
4b25c1380b77ab7600d27f8069a4bf5b727ec3628b28b46e126e4013fa308da1_NeikiAnalytics.exe
-
Size
129KB
-
MD5
a18c306d4316726c6432d214098df1a0
-
SHA1
938e349afef623e008e20dcb1966c52bd0db2dea
-
SHA256
4b25c1380b77ab7600d27f8069a4bf5b727ec3628b28b46e126e4013fa308da1
-
SHA512
e7073d1222d26ed486a8910498df195cf360841663fa1f275e1d3300fd27f4eb44286695e825b84201c5624dcb6fe277fec6d80be2addba1fe205beee6b6fb95
-
SSDEEP
3072:4yNRsoWbjJ/Yzde0Nc8QsCDomnzVincQDDomnzVincQDr:4yNRsNbjGc0Nc8QsMtsti
Malware Config
Extracted
metasploit
windows/download_exec
http://example.com:80/hop.php?/12345
Signatures
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.