General

  • Target

    ea4b8258ea7656cc6859faa6772d0070_NeikiAnalytics.exe

  • Size

    35KB

  • MD5

    ea4b8258ea7656cc6859faa6772d0070

  • SHA1

    0faca799f7e63291ffd662ee8493acf301886b5b

  • SHA256

    e1b813815f8a7f15b24823c47aef070222987070c4b83859bdad6bac317938fc

  • SHA512

    e4c2bc724ff43a5c1970179ca2ea68c1ac8c9479ea8361f06b1fe4fa97cea17d82819d2174e5c049b3c71c25929b4d3c5f0e135c1804412120510a573d6ff16d

  • SSDEEP

    768:e6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:l8Z0kA7FHlO2OwOTUtKjpB

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ea4b8258ea7656cc6859faa6772d0070_NeikiAnalytics.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections