General

  • Target

    4bf60b7e717b801252dc4afe3e199c30_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240519-ca3myacd4w

  • MD5

    4bf60b7e717b801252dc4afe3e199c30

  • SHA1

    0665a486585547a0d1f8b40c16a872a45df826b5

  • SHA256

    01f83c2363eea73fd53d4880fb4969cbd7ada97b69c59f301869d45d3a8db52f

  • SHA512

    45870ee09f206d2e47313bd34b8bc563c444d320d8c43957f757c03214295f06fe59a10f95b403aaab5e17b02bb2f2ea8cf23671999a0d4ad0fce2164c6e46b5

  • SSDEEP

    768:wMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:wbIvYvZEyFKF6N4yS+AQmZcl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      4bf60b7e717b801252dc4afe3e199c30_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      4bf60b7e717b801252dc4afe3e199c30

    • SHA1

      0665a486585547a0d1f8b40c16a872a45df826b5

    • SHA256

      01f83c2363eea73fd53d4880fb4969cbd7ada97b69c59f301869d45d3a8db52f

    • SHA512

      45870ee09f206d2e47313bd34b8bc563c444d320d8c43957f757c03214295f06fe59a10f95b403aaab5e17b02bb2f2ea8cf23671999a0d4ad0fce2164c6e46b5

    • SSDEEP

      768:wMEIvFGvZEr8LFK0ic46N47eSdYAHwmZwSp6JXXlaa5uA:wbIvYvZEyFKF6N4yS+AQmZcl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks