General

  • Target

    54cf847da3990d6c510379cb28bd1780_NeikiAnalytics.exe

  • Size

    72KB

  • Sample

    240519-cx838sea46

  • MD5

    54cf847da3990d6c510379cb28bd1780

  • SHA1

    f2d29f0997e53b4a42d90a63f62900e5cce1141b

  • SHA256

    fd65a224e0f697ccbf2edc1e3f345a2708e913236c2406728971e5ab6788d64f

  • SHA512

    079d4c8506f401bc76502414bee10465e3b367b9a0984898e3073e0fa5d924dfa456d468841788f859d54b76fff377fa0a613feb9d5706191064432b4596bf07

  • SSDEEP

    1536:Ad9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211:gdseIOMEZEyFjEOFqTiQm5l/5211

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      54cf847da3990d6c510379cb28bd1780_NeikiAnalytics.exe

    • Size

      72KB

    • MD5

      54cf847da3990d6c510379cb28bd1780

    • SHA1

      f2d29f0997e53b4a42d90a63f62900e5cce1141b

    • SHA256

      fd65a224e0f697ccbf2edc1e3f345a2708e913236c2406728971e5ab6788d64f

    • SHA512

      079d4c8506f401bc76502414bee10465e3b367b9a0984898e3073e0fa5d924dfa456d468841788f859d54b76fff377fa0a613feb9d5706191064432b4596bf07

    • SSDEEP

      1536:Ad9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211:gdseIOMEZEyFjEOFqTiQm5l/5211

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks