Overview

overview

10

Static

static

10

8107d0083c...cs.exe

windows7-x64

10

8107d0083c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8107d0083cb54b76cf1abdf65b8c7ab0_NeikiAnalytics.exe

  • Size

    35KB

  • Sample

    240619-ecfx3atble

  • MD5

    8107d0083cb54b76cf1abdf65b8c7ab0

  • SHA1

    69ed8918a10eb7ddeb1ffd77ca8b8c7ed2a7abf7

  • SHA256

    74c2afc0c08175400ed5eb53c52b2ffd57355695856e7e7fea12eb53d1a50eda

  • SHA512

    158be92125de8fb4a488776fc6d781e50d64ba892fd89ee7891809e306ef997b0ae2c3db00386e8bb5633fcabd573e327fc65cf702a3f2d322ee9650d724e45d

  • SSDEEP

    768:W6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:t8Z0kA7FHlO2OwOTUtKjpB

Score
10/10
neconydtrojanupx

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      8107d0083cb54b76cf1abdf65b8c7ab0_NeikiAnalytics.exe

    • Size

      35KB

    • MD5

      8107d0083cb54b76cf1abdf65b8c7ab0

    • SHA1

      69ed8918a10eb7ddeb1ffd77ca8b8c7ed2a7abf7

    • SHA256

      74c2afc0c08175400ed5eb53c52b2ffd57355695856e7e7fea12eb53d1a50eda

    • SHA512

      158be92125de8fb4a488776fc6d781e50d64ba892fd89ee7891809e306ef997b0ae2c3db00386e8bb5633fcabd573e327fc65cf702a3f2d322ee9650d724e45d

    • SSDEEP

      768:W6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:t8Z0kA7FHlO2OwOTUtKjpB

    Score
    10/10
    neconydtrojanupx

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks