General

  • Target

    23c9f115e1cea35f9dd8a3609da4ae3bb397b29fab8f1a15933fc8ac9d971251_NeikiAnalytics

  • Size

    84KB

  • Sample

    240521-kkcs9seh9y

  • MD5

    187d8183cd6b4e4a350d679916510850

  • SHA1

    a85ed7362e955b8e58a909696acaf6470f2cbdc4

  • SHA256

    23c9f115e1cea35f9dd8a3609da4ae3bb397b29fab8f1a15933fc8ac9d971251

  • SHA512

    416278a823f1ef9ebcc7bf2d0ace1eeda866c8f56b6ac6b3770712e74fe4e3cf5923e92c9d98e009d226a9c36461a9806a87533a78b223bef20d7c3dac192036

  • SSDEEP

    1536:Fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:tdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      23c9f115e1cea35f9dd8a3609da4ae3bb397b29fab8f1a15933fc8ac9d971251_NeikiAnalytics

    • Size

      84KB

    • MD5

      187d8183cd6b4e4a350d679916510850

    • SHA1

      a85ed7362e955b8e58a909696acaf6470f2cbdc4

    • SHA256

      23c9f115e1cea35f9dd8a3609da4ae3bb397b29fab8f1a15933fc8ac9d971251

    • SHA512

      416278a823f1ef9ebcc7bf2d0ace1eeda866c8f56b6ac6b3770712e74fe4e3cf5923e92c9d98e009d226a9c36461a9806a87533a78b223bef20d7c3dac192036

    • SSDEEP

      1536:Fd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:tdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks