General

  • Target

    826c68194497a68adc8fb95b9df7b7b899b67e08e9d821f01042a5565489d3b8_NeikiAnalytics.exe

  • Size

    247KB

  • Sample

    240624-r14egs1app

  • MD5

    9836c183d2eb80c94b1fb4bc6ff19cc0

  • SHA1

    9690819c84cc85c05d1471a22243b9acd87ad782

  • SHA256

    826c68194497a68adc8fb95b9df7b7b899b67e08e9d821f01042a5565489d3b8

  • SHA512

    19ce76396ce26e47491a3c0653e4eefa77f4a04eee9d21a211b528fe8370d48df7b1c1897d27d3405bd9464cf8fb216aef8b86c4170b572ad2c3689b02109c6a

  • SSDEEP

    3072:pP/C1+jwRw7CyzzyPcaMmliFHyznF9zS0+NdRB3p9aKfsul8wDo/PCq5fHlPdg:9/kS7C8yUqliNyjSrB59a6scjDyX5R

Malware Config

Extracted

Family

cobaltstrike

C2

http://8.137.114.224:8012/ESda

Attributes
  • user_agent

    User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko

Targets

    • Target

      826c68194497a68adc8fb95b9df7b7b899b67e08e9d821f01042a5565489d3b8_NeikiAnalytics.exe

    • Size

      247KB

    • MD5

      9836c183d2eb80c94b1fb4bc6ff19cc0

    • SHA1

      9690819c84cc85c05d1471a22243b9acd87ad782

    • SHA256

      826c68194497a68adc8fb95b9df7b7b899b67e08e9d821f01042a5565489d3b8

    • SHA512

      19ce76396ce26e47491a3c0653e4eefa77f4a04eee9d21a211b528fe8370d48df7b1c1897d27d3405bd9464cf8fb216aef8b86c4170b572ad2c3689b02109c6a

    • SSDEEP

      3072:pP/C1+jwRw7CyzzyPcaMmliFHyznF9zS0+NdRB3p9aKfsul8wDo/PCq5fHlPdg:9/kS7C8yUqliNyjSrB59a6scjDyX5R

MITRE ATT&CK Enterprise v15

Tasks