Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    38e5049cc2c3ee6a9d292e116a521c20_NeikiAnalytics

  • Size

    35KB

  • Sample

    240511-akjxgaab3x

  • MD5

    38e5049cc2c3ee6a9d292e116a521c20

  • SHA1

    862a019ea52f61c7be6611ec09be190d9e5a551f

  • SHA256

    94396da6be5a0ac1e3f30e9991ca1e52d630da7d106c4085a6369f205a5e7625

  • SHA512

    f184b288b0f560f2ece919a5096c1840b18a8c21107e90bc9505784568e9aca55508f3db8a3c87db2136a91bd8397e9410e02be4e721fd23890a485469e8e3e3

  • SSDEEP

    768:g6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:38Z0kA7FHlO2OwOTUtKjpB

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      38e5049cc2c3ee6a9d292e116a521c20_NeikiAnalytics

    • Size

      35KB

    • MD5

      38e5049cc2c3ee6a9d292e116a521c20

    • SHA1

      862a019ea52f61c7be6611ec09be190d9e5a551f

    • SHA256

      94396da6be5a0ac1e3f30e9991ca1e52d630da7d106c4085a6369f205a5e7625

    • SHA512

      f184b288b0f560f2ece919a5096c1840b18a8c21107e90bc9505784568e9aca55508f3db8a3c87db2136a91bd8397e9410e02be4e721fd23890a485469e8e3e3

    • SSDEEP

      768:g6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:38Z0kA7FHlO2OwOTUtKjpB

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks