General

  • Target

    cb15302ba213f5045dc2a3b76b8c8890_NeikiAnalytics.exe

  • Size

    92KB

  • Sample

    240519-qt23eaaf8s

  • MD5

    cb15302ba213f5045dc2a3b76b8c8890

  • SHA1

    fb840a6014b8ff0412791821e0680b16e74592ca

  • SHA256

    ef5452fcc871ec3b9991c84681341323a1e565e6fb186f5838b855ed5f2330e0

  • SHA512

    7ffb6803f02b388aa6d7c26c0970845b1a1215c5cd092dbee51d61dd7b62419e3619bb5059e4cb6938ed4bdd57c306e624033d11643134c8e2b3807b0963cc91

  • SSDEEP

    768:EMTIvFGvZEh8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:EUIvYvZEgFKF6N4yS+AQmZTl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      cb15302ba213f5045dc2a3b76b8c8890_NeikiAnalytics.exe

    • Size

      92KB

    • MD5

      cb15302ba213f5045dc2a3b76b8c8890

    • SHA1

      fb840a6014b8ff0412791821e0680b16e74592ca

    • SHA256

      ef5452fcc871ec3b9991c84681341323a1e565e6fb186f5838b855ed5f2330e0

    • SHA512

      7ffb6803f02b388aa6d7c26c0970845b1a1215c5cd092dbee51d61dd7b62419e3619bb5059e4cb6938ed4bdd57c306e624033d11643134c8e2b3807b0963cc91

    • SSDEEP

      768:EMTIvFGvZEh8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:EUIvYvZEgFKF6N4yS+AQmZTl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks