Overview

overview

10

Static

static

10

13855ddc63...KI.exe

windows7-x64

10

13855ddc63...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    13855ddc6357c876c446d51b88ae2b00_NEIKI

  • Size

    76KB

  • Sample

    240507-yd22gaeh32

  • MD5

    13855ddc6357c876c446d51b88ae2b00

  • SHA1

    c01ce28f0c36ee8ee39452e39303b8bb0781d6c5

  • SHA256

    1d75a2266f657eef879cc76771f1dec0ac0f2b62f5c066d3a1a9e9548252ea54

  • SHA512

    af3023e8b6812a0bf22ad300cb7476c3eba536ddfa12ba7bb39e94cc25f820915346bafe201f9638dd1c9d146c16e2cbc37dd34d0e930e17b83f50489d6c2a44

  • SSDEEP

    1536:Sd9dseIOcE93NIvYvZEyFhEEOF6N4yS+AQmZTl/5s11:idseIOKEZEyF6EOFqTiQm5l/5s11

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      13855ddc6357c876c446d51b88ae2b00_NEIKI

    • Size

      76KB

    • MD5

      13855ddc6357c876c446d51b88ae2b00

    • SHA1

      c01ce28f0c36ee8ee39452e39303b8bb0781d6c5

    • SHA256

      1d75a2266f657eef879cc76771f1dec0ac0f2b62f5c066d3a1a9e9548252ea54

    • SHA512

      af3023e8b6812a0bf22ad300cb7476c3eba536ddfa12ba7bb39e94cc25f820915346bafe201f9638dd1c9d146c16e2cbc37dd34d0e930e17b83f50489d6c2a44

    • SSDEEP

      1536:Sd9dseIOcE93NIvYvZEyFhEEOF6N4yS+AQmZTl/5s11:idseIOKEZEyF6EOFqTiQm5l/5s11

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks