General

  • Target

    bebb2104962db94ce9255769debb1e50_NeikiAnalytics.exe

  • Size

    88KB

  • Sample

    240519-ptefnshd73

  • MD5

    bebb2104962db94ce9255769debb1e50

  • SHA1

    910bb421e479ed34913b13da5d173b4dfaca9063

  • SHA256

    a94805f144eda292b336aafa6781778a3064f182c4b641afbbe0a128411be62e

  • SHA512

    a843ee99ef2d4169199bb8d783c882c17c54d8367c77f06d5f873ef8bcd509f06f53cbbeb78458b9b603f54f8aeff2797d631a501b004628801f38920ea9a4c4

  • SSDEEP

    1536:Qd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:QdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      bebb2104962db94ce9255769debb1e50_NeikiAnalytics.exe

    • Size

      88KB

    • MD5

      bebb2104962db94ce9255769debb1e50

    • SHA1

      910bb421e479ed34913b13da5d173b4dfaca9063

    • SHA256

      a94805f144eda292b336aafa6781778a3064f182c4b641afbbe0a128411be62e

    • SHA512

      a843ee99ef2d4169199bb8d783c882c17c54d8367c77f06d5f873ef8bcd509f06f53cbbeb78458b9b603f54f8aeff2797d631a501b004628801f38920ea9a4c4

    • SSDEEP

      1536:Qd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:QdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks