neconyd | 247f467b3ae57db89d7fed7478f99acbb73a89baf663ca6957704b5e37a357af | Triage

Sharing

General

Target

14e858561217312780245e5937c33870_NeikiAnalytics.exe
Size

96KB
Sample

240606-y29q8acf45
MD5

14e858561217312780245e5937c33870
SHA1

56c9389653490f3a4cb7d01c1ec9cb5c43ce3fb1
SHA256

247f467b3ae57db89d7fed7478f99acbb73a89baf663ca6957704b5e37a357af
SHA512

7314f4736b3f50ee680fdab6a137414a2c815e8b4b6814ca98c9468ad1f9f7033bb53c2b06a69c965afddc09fccf42751a38539f68dfb6b0267985e0a93ea8b5
SSDEEP

1536:lnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:lGs8cd8eXlYairZYqMddH13L

Score

10^/10

neconyd trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  14e858561217312780245e5937c33870_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  14e858561217312780245e5937c33870
- SHA1
  
  56c9389653490f3a4cb7d01c1ec9cb5c43ce3fb1
- SHA256
  
  247f467b3ae57db89d7fed7478f99acbb73a89baf663ca6957704b5e37a357af
- SHA512
  
  7314f4736b3f50ee680fdab6a137414a2c815e8b4b6814ca98c9468ad1f9f7033bb53c2b06a69c965afddc09fccf42751a38539f68dfb6b0267985e0a93ea8b5
- SSDEEP
  
  1536:lnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:lGs8cd8eXlYairZYqMddH13L
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2