Overview

overview

10

Static

static

3

89ceb3fcaf...cs.exe

windows7-x64

10

89ceb3fcaf...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    89ceb3fcaf666d81e6c85f94757b0ca0_NeikiAnalytics.exe

  • Size

    134KB

  • Sample

    240517-cxngjadb7v

  • MD5

    89ceb3fcaf666d81e6c85f94757b0ca0

  • SHA1

    e9ec7a03a8e115c54c8e52003bcc098c28be0580

  • SHA256

    e9ec73d13ebeb954a4c741c2ae91fb07c8b80eaf44d9609de291d5a4a34f36a3

  • SHA512

    46f61c652480ff64591dd96626ccb8446197f0506f515de8d7201da1e25883851b439d8b6355bbbfa2082ac9d83e46ed505abf5f867f7a51c3607c6042532c6a

  • SSDEEP

    1536:tDfDbhERTatPLTH0NqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwC7M:9iRTeH0NqAW6J6f1tqF6dngNmaZC7M

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      89ceb3fcaf666d81e6c85f94757b0ca0_NeikiAnalytics.exe

    • Size

      134KB

    • MD5

      89ceb3fcaf666d81e6c85f94757b0ca0

    • SHA1

      e9ec7a03a8e115c54c8e52003bcc098c28be0580

    • SHA256

      e9ec73d13ebeb954a4c741c2ae91fb07c8b80eaf44d9609de291d5a4a34f36a3

    • SHA512

      46f61c652480ff64591dd96626ccb8446197f0506f515de8d7201da1e25883851b439d8b6355bbbfa2082ac9d83e46ed505abf5f867f7a51c3607c6042532c6a

    • SSDEEP

      1536:tDfDbhERTatPLTH0NqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwC7M:9iRTeH0NqAW6J6f1tqF6dngNmaZC7M

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks