General

  • Target

    625b213f88f288751e96f5e5771de07ee47f468ed38292746c0821921559838d_NeikiAnalytics.exe

  • Size

    72KB

  • MD5

    4af766dfb884464cd85f76756c749d30

  • SHA1

    8240d0a4598eef93f9bcb57eb679976b9aa5c095

  • SHA256

    625b213f88f288751e96f5e5771de07ee47f468ed38292746c0821921559838d

  • SHA512

    138d6dfb357fba4554c81620be7eef9d56434d269a84659a5ac74ea6024d02d91b147c19970d1bb699860a51d99d0ded1e3ce6488a42bf4ff8095f0bc949591e

  • SSDEEP

    1536:ICFVrxWLaqWLHBDNsvmFEEI2BPeYuu3Mb+KR0Nc8QsJq39:fFVrbfNsyEqBSAe0Nc8QsC9

Score
10/10

Malware Config

Extracted

Family

metasploit

Version

encoder/shikata_ga_nai

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

192.168.1.100:4444

Signatures

  • Metasploit family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 625b213f88f288751e96f5e5771de07ee47f468ed38292746c0821921559838d_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86

    481f47bbb2c9c21e108d65f52b04c448


    Headers

    Imports

    Sections