General

  • Target

    b0dea26629891edb4c1807af1c2244d0_NeikiAnalytics.exe

  • Size

    84KB

  • Sample

    240519-nkhajafe8t

  • MD5

    b0dea26629891edb4c1807af1c2244d0

  • SHA1

    b68789611983a565e9254d65bfd8eba8c15d548f

  • SHA256

    3ca867ba879dd54d8f738bb10f94f340c1b2fa02308a6ce7772b218f650d5d62

  • SHA512

    02830d6f863e69f31556287614f10318f7d0cc7886f57e6b2720cbf9fadcf53dec46e75691d8b46117e210dc388290f9af4dbdafefe5e7ffd437409e5d13dc97

  • SSDEEP

    1536:Ld9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:7dseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      b0dea26629891edb4c1807af1c2244d0_NeikiAnalytics.exe

    • Size

      84KB

    • MD5

      b0dea26629891edb4c1807af1c2244d0

    • SHA1

      b68789611983a565e9254d65bfd8eba8c15d548f

    • SHA256

      3ca867ba879dd54d8f738bb10f94f340c1b2fa02308a6ce7772b218f650d5d62

    • SHA512

      02830d6f863e69f31556287614f10318f7d0cc7886f57e6b2720cbf9fadcf53dec46e75691d8b46117e210dc388290f9af4dbdafefe5e7ffd437409e5d13dc97

    • SSDEEP

      1536:Ld9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:7dseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks