Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0b291e1681d27801782c43013bc35810_NeikiAnalytics.exe

  • Size

    65KB

  • Sample

    240526-28ca3sff4v

  • MD5

    0b291e1681d27801782c43013bc35810

  • SHA1

    cfd1e8cf2953456f8041da203ea9f9e1b046aa22

  • SHA256

    6ed443366a00b45ba405dc7e710f8fceb34683d97ddf14d1f3e79f113206be94

  • SHA512

    0f6f52598ca9e571957e0d027031cd00afd1779ea9ede642d3f26dabc6c8957b5ee2a58d8d1b6a026f82ff90852067aa7b81c6e576145f44fa64b63b7efb88c8

  • SSDEEP

    1536:Td9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:TdseIO+EZEyFjEOFqTiQmOl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      0b291e1681d27801782c43013bc35810_NeikiAnalytics.exe

    • Size

      65KB

    • MD5

      0b291e1681d27801782c43013bc35810

    • SHA1

      cfd1e8cf2953456f8041da203ea9f9e1b046aa22

    • SHA256

      6ed443366a00b45ba405dc7e710f8fceb34683d97ddf14d1f3e79f113206be94

    • SHA512

      0f6f52598ca9e571957e0d027031cd00afd1779ea9ede642d3f26dabc6c8957b5ee2a58d8d1b6a026f82ff90852067aa7b81c6e576145f44fa64b63b7efb88c8

    • SSDEEP

      1536:Td9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:TdseIO+EZEyFjEOFqTiQmOl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks