General

  • Target

    00ddf390a714c8de81f15b7851e1d9bc56c3b4c43b8fe3e85c6161da27aa4949_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240623-qm56gssapf

  • MD5

    f97889e581515ccba2204374e8e4e200

  • SHA1

    8e4ea929cb5b13b5ea20f10079e21264ef6c1c80

  • SHA256

    00ddf390a714c8de81f15b7851e1d9bc56c3b4c43b8fe3e85c6161da27aa4949

  • SHA512

    a397f33306809fba9f0748e0a17c1a031f6054113c7a0ef9de2dd8076fdfb4154f17cd085b3933d7f0bcb0fa9b02e28ef310e60bca582ba6129f5f2b3af50bb6

  • SSDEEP

    1536:Iv/RwbQcMBIPtbKg9SzzYjOhWQOaxqMb+KR0Nc8QsJq39:IcFPtb12sDQrxqe0Nc8QsC9

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

47.239.2.23:5555

Targets

    • Target

      00ddf390a714c8de81f15b7851e1d9bc56c3b4c43b8fe3e85c6161da27aa4949_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      f97889e581515ccba2204374e8e4e200

    • SHA1

      8e4ea929cb5b13b5ea20f10079e21264ef6c1c80

    • SHA256

      00ddf390a714c8de81f15b7851e1d9bc56c3b4c43b8fe3e85c6161da27aa4949

    • SHA512

      a397f33306809fba9f0748e0a17c1a031f6054113c7a0ef9de2dd8076fdfb4154f17cd085b3933d7f0bcb0fa9b02e28ef310e60bca582ba6129f5f2b3af50bb6

    • SSDEEP

      1536:Iv/RwbQcMBIPtbKg9SzzYjOhWQOaxqMb+KR0Nc8QsJq39:IcFPtb12sDQrxqe0Nc8QsC9

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

MITRE ATT&CK Matrix

Tasks