Overview

overview

10

Static

static

10

6f7863bda2...cs.exe

windows7-x64

10

6f7863bda2...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f7863bda2d246b5d0de93517963a050_NeikiAnalytics.exe

  • Size

    35KB

  • Sample

    240617-kzdzwatdpb

  • MD5

    6f7863bda2d246b5d0de93517963a050

  • SHA1

    f327e6689c4b6d3b32c513547f35b9717ada9f47

  • SHA256

    29496f78da2cdad594a897aa6a124e3786f61641b14fd176525d3e4c415ef89f

  • SHA512

    81334fa4a186d5d0926136bb9aa9e7578b82cf017b5479af23fb046cb50b9ef74889d32eb8e7d79e2027f3929bf21a6d1d6b816c220c40a288166eb784f48888

  • SSDEEP

    768:t6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:g8Z0kA7FHlO2OwOTUtKjpB

Score
10/10
neconydtrojanupx

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      6f7863bda2d246b5d0de93517963a050_NeikiAnalytics.exe

    • Size

      35KB

    • MD5

      6f7863bda2d246b5d0de93517963a050

    • SHA1

      f327e6689c4b6d3b32c513547f35b9717ada9f47

    • SHA256

      29496f78da2cdad594a897aa6a124e3786f61641b14fd176525d3e4c415ef89f

    • SHA512

      81334fa4a186d5d0926136bb9aa9e7578b82cf017b5479af23fb046cb50b9ef74889d32eb8e7d79e2027f3929bf21a6d1d6b816c220c40a288166eb784f48888

    • SSDEEP

      768:t6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:g8Z0kA7FHlO2OwOTUtKjpB

    Score
    10/10
    neconydtrojanupx

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks