Overview

overview

10

Static

static

3

843b7d7672...cs.exe

windows7-x64

10

843b7d7672...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    843b7d76728043dcbb2c017bdec498301a6654a5b64ac2d7869806610a20187a_NeikiAnalytics.exe

  • Size

    5KB

  • Sample

    240629-jndpastdnb

  • MD5

    b7a840c702193b55cd270762bc032430

  • SHA1

    c4a133517208aaf620bc75c9a7dde1125ab3c5fe

  • SHA256

    843b7d76728043dcbb2c017bdec498301a6654a5b64ac2d7869806610a20187a

  • SHA512

    8f9f31ec0b0b2d004fff1b085c0dca8f9062a3875db916c5cb035dee3e7db824d3f158c5804794f799c471cbd836dd1085167b8775c411e1f78b0eb012b0e6a9

  • SSDEEP

    96:1MfOKINu62GnnrMsTU9ig+uGs7YdDjSY+CawyF18ApA1a6JhduV0:1kOTN52+ciqGsgaYpQOqQaYhduV0

Score
10/10
metasploitbackdoortrojan

Malware Config

Extracted

Family

metasploit

Version

windows/reverse_tcp

C2

86.104.74.31:9981

Targets

    • Target

      843b7d76728043dcbb2c017bdec498301a6654a5b64ac2d7869806610a20187a_NeikiAnalytics.exe

    • Size

      5KB

    • MD5

      b7a840c702193b55cd270762bc032430

    • SHA1

      c4a133517208aaf620bc75c9a7dde1125ab3c5fe

    • SHA256

      843b7d76728043dcbb2c017bdec498301a6654a5b64ac2d7869806610a20187a

    • SHA512

      8f9f31ec0b0b2d004fff1b085c0dca8f9062a3875db916c5cb035dee3e7db824d3f158c5804794f799c471cbd836dd1085167b8775c411e1f78b0eb012b0e6a9

    • SSDEEP

      96:1MfOKINu62GnnrMsTU9ig+uGs7YdDjSY+CawyF18ApA1a6JhduV0:1kOTN52+ciqGsgaYpQOqQaYhduV0

    Score
    10/10
    metasploitbackdoortrojan

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

      trojanbackdoormetasploit
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks