General

  • Target

    3daf830fc3cf7e4b3b90eaa6ef590efd60cf79fdae68f258a76001d9b05344d0_NeikiAnalytics

  • Size

    84KB

  • Sample

    240521-nbxc4abe5s

  • MD5

    9e11cdba79bbb1e266747105f85452b0

  • SHA1

    1ddaaf13b5a40495a9e8f6e23b6b234e890ae246

  • SHA256

    3daf830fc3cf7e4b3b90eaa6ef590efd60cf79fdae68f258a76001d9b05344d0

  • SHA512

    ab6b0d3d15bc580fe4218a6c960c416a43368b17a66b4483436380b7b80bec19c0c796b4d98f61ec2d5bd8365d5d63138a31b326f8c56eb8d1afecaa9267b56a

  • SSDEEP

    1536:kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:cdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      3daf830fc3cf7e4b3b90eaa6ef590efd60cf79fdae68f258a76001d9b05344d0_NeikiAnalytics

    • Size

      84KB

    • MD5

      9e11cdba79bbb1e266747105f85452b0

    • SHA1

      1ddaaf13b5a40495a9e8f6e23b6b234e890ae246

    • SHA256

      3daf830fc3cf7e4b3b90eaa6ef590efd60cf79fdae68f258a76001d9b05344d0

    • SHA512

      ab6b0d3d15bc580fe4218a6c960c416a43368b17a66b4483436380b7b80bec19c0c796b4d98f61ec2d5bd8365d5d63138a31b326f8c56eb8d1afecaa9267b56a

    • SSDEEP

      1536:kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:cdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks