General

  • Target

    16cd8fc0620e6eb5a8d341d0ce8b3bc8d7a6861e3eda2e4492bd6d5bc9645cdd_NeikiAnalytics

  • Size

    92KB

  • Sample

    240521-hyvj5ace8y

  • MD5

    d778c5f619c010fb474b77763cd5e2a4

  • SHA1

    15fc99ce1104d3e522a14b1e670fb79e64f4a32c

  • SHA256

    16cd8fc0620e6eb5a8d341d0ce8b3bc8d7a6861e3eda2e4492bd6d5bc9645cdd

  • SHA512

    aeca53c4e3f361c90b119ffd0a44d6d491fd72e2865358131edea6a86a185ae2a6f0d470d6351768d71fe1d5e842828a129c174f4d2b191810d198ff07b23205

  • SSDEEP

    1536:pd9dseIOcEE3bIvYvZEyF4EEOF6N4yS+AQmZTl/5:pdseIO/EZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      16cd8fc0620e6eb5a8d341d0ce8b3bc8d7a6861e3eda2e4492bd6d5bc9645cdd_NeikiAnalytics

    • Size

      92KB

    • MD5

      d778c5f619c010fb474b77763cd5e2a4

    • SHA1

      15fc99ce1104d3e522a14b1e670fb79e64f4a32c

    • SHA256

      16cd8fc0620e6eb5a8d341d0ce8b3bc8d7a6861e3eda2e4492bd6d5bc9645cdd

    • SHA512

      aeca53c4e3f361c90b119ffd0a44d6d491fd72e2865358131edea6a86a185ae2a6f0d470d6351768d71fe1d5e842828a129c174f4d2b191810d198ff07b23205

    • SSDEEP

      1536:pd9dseIOcEE3bIvYvZEyF4EEOF6N4yS+AQmZTl/5:pdseIO/EZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks