General

  • Target

    2c535b5b8e242717c64f8d1c6f39903829fb87ac086749b0ed044ba7d2e5c4fc_NeikiAnalytics

  • Size

    84KB

  • Sample

    240521-lf4xmagd46

  • MD5

    0440f8fc9171a50160a8a9e0279fe4b0

  • SHA1

    3c0ae07a71566b07db6a3037e8ff7275b9f827f8

  • SHA256

    2c535b5b8e242717c64f8d1c6f39903829fb87ac086749b0ed044ba7d2e5c4fc

  • SHA512

    61fa3937213988dc99a3aa1b1b30ffbb081a04ee963df6907e8e701e41d36f1c168c2a6c84f370fcd3a5193edaa55474db9693aa07e4915bf7807918bb5f22f0

  • SSDEEP

    1536:Td9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:TdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      2c535b5b8e242717c64f8d1c6f39903829fb87ac086749b0ed044ba7d2e5c4fc_NeikiAnalytics

    • Size

      84KB

    • MD5

      0440f8fc9171a50160a8a9e0279fe4b0

    • SHA1

      3c0ae07a71566b07db6a3037e8ff7275b9f827f8

    • SHA256

      2c535b5b8e242717c64f8d1c6f39903829fb87ac086749b0ed044ba7d2e5c4fc

    • SHA512

      61fa3937213988dc99a3aa1b1b30ffbb081a04ee963df6907e8e701e41d36f1c168c2a6c84f370fcd3a5193edaa55474db9693aa07e4915bf7807918bb5f22f0

    • SSDEEP

      1536:Td9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:TdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks