General

  • Target

    554b34972e904d275cdb008ea035a9882ed9cbc1a308cfe6bfd30eea0e497299_NeikiAnalytics

  • Size

    89KB

  • Sample

    240521-qpz29afe9s

  • MD5

    2b85e47cb91fdb342d216b92757e0dc0

  • SHA1

    8999581c883f615117731d3ba4752f1b56fb9d11

  • SHA256

    554b34972e904d275cdb008ea035a9882ed9cbc1a308cfe6bfd30eea0e497299

  • SHA512

    6db3790549975a0e06410d3434b54b27110b5a68b5f0eaf2814b092ae5d22600a0ffed0055ffbee638b8d28fa190ec573915fa27d71445929931bdb8f464b3eb

  • SSDEEP

    768:5MEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:5bIvYvZEyFKF6N4yS+AQmZTl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      554b34972e904d275cdb008ea035a9882ed9cbc1a308cfe6bfd30eea0e497299_NeikiAnalytics

    • Size

      89KB

    • MD5

      2b85e47cb91fdb342d216b92757e0dc0

    • SHA1

      8999581c883f615117731d3ba4752f1b56fb9d11

    • SHA256

      554b34972e904d275cdb008ea035a9882ed9cbc1a308cfe6bfd30eea0e497299

    • SHA512

      6db3790549975a0e06410d3434b54b27110b5a68b5f0eaf2814b092ae5d22600a0ffed0055ffbee638b8d28fa190ec573915fa27d71445929931bdb8f464b3eb

    • SSDEEP

      768:5MEIvFGvZEr8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:5bIvYvZEyFKF6N4yS+AQmZTl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks