General
-
Target
3fa1481374fc22fb1a2d3e9fedb6d3c38788a8660abab0e8febfa7fb6f78a82e_NeikiAnalytics.exe
-
Size
35KB
-
MD5
fa4163fb79806ce8f078fdfb5c5022c0
-
SHA1
c5cd75489b7aae973ea471f9fdaef12b73e901a0
-
SHA256
3fa1481374fc22fb1a2d3e9fedb6d3c38788a8660abab0e8febfa7fb6f78a82e
-
SHA512
5e9a91dd398e3abd57bc0e28ba20ccc042950fd84848184307ec11bc5c1a72e3122d4739ac7a91368c4f0b3752fd83ddb42790072494cbf4f7fb0ee3ec2abccd
-
SSDEEP
768:z6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:u8Z0kA7FHlO2OwOTUtKjpB
Score
10/10
Malware Config
Extracted
Family
neconyd
C2
http://ow5dirasuek.com/
http://mkkuei4kdsz.com/
http://lousta.net/
Signatures
-
Neconyd family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
3fa1481374fc22fb1a2d3e9fedb6d3c38788a8660abab0e8febfa7fb6f78a82e_NeikiAnalytics.exe
Headers
Sections
-
out.upx
Headers
Sections