Overview

overview

10

Static

static

3

4277213c7a...cs.exe

windows7-x64

10

4277213c7a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4277213c7aceb94736a7b5c68fd12bd5bdcd7b6f70a17171bb34d2588278968c_NeikiAnalytics.exe

  • Size

    134KB

  • Sample

    240624-fy99gayalf

  • MD5

    b40040833cc55e055d0fdba58d573fa0

  • SHA1

    dd5ebe89fde11c12df0874f4d94c57b7f73e0dd0

  • SHA256

    4277213c7aceb94736a7b5c68fd12bd5bdcd7b6f70a17171bb34d2588278968c

  • SHA512

    97724a5cbe6ce273892f7a69b7a0e7dcdf6b3f8cade559c8d763c569a6af86a47628981e976ff67910ce06ac1b4aef383479811c0e3f6d40d13355c0c54c5422

  • SSDEEP

    1536:VDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:1iRTeH0iqAW6J6f1tqF6dngNmaZCia

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      4277213c7aceb94736a7b5c68fd12bd5bdcd7b6f70a17171bb34d2588278968c_NeikiAnalytics.exe

    • Size

      134KB

    • MD5

      b40040833cc55e055d0fdba58d573fa0

    • SHA1

      dd5ebe89fde11c12df0874f4d94c57b7f73e0dd0

    • SHA256

      4277213c7aceb94736a7b5c68fd12bd5bdcd7b6f70a17171bb34d2588278968c

    • SHA512

      97724a5cbe6ce273892f7a69b7a0e7dcdf6b3f8cade559c8d763c569a6af86a47628981e976ff67910ce06ac1b4aef383479811c0e3f6d40d13355c0c54c5422

    • SSDEEP

      1536:VDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:1iRTeH0iqAW6J6f1tqF6dngNmaZCia

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks