neconyd | 10214e14382a1f186072b392eb27497f844fa329199d135ad9188f1d07de64e4 | Triage

Sharing

General

Target

10214e14382a1f186072b392eb27497f844fa329199d135ad9188f1d07de64e4_NeikiAnalytics.exe
Size

96KB
Sample

240625-z3d7dawdqm
MD5

ea5382cd4292814723dd7061bf2f0d70
SHA1

6f552ea5b9aa9b863bef9b4b589a0926e5457bd8
SHA256

10214e14382a1f186072b392eb27497f844fa329199d135ad9188f1d07de64e4
SHA512

bd3c23d155dc5c9412b0c0cace7c2220702916e13216e9b90a500fb27db268138036bf7189edde9ca107f53c76e1e722a32285930b7a5726721334329a612ee4
SSDEEP

1536:SnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:SGs8cd8eXlYairZYqMddH13L

Score

10^/10

neconyd trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  10214e14382a1f186072b392eb27497f844fa329199d135ad9188f1d07de64e4_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  ea5382cd4292814723dd7061bf2f0d70
- SHA1
  
  6f552ea5b9aa9b863bef9b4b589a0926e5457bd8
- SHA256
  
  10214e14382a1f186072b392eb27497f844fa329199d135ad9188f1d07de64e4
- SHA512
  
  bd3c23d155dc5c9412b0c0cace7c2220702916e13216e9b90a500fb27db268138036bf7189edde9ca107f53c76e1e722a32285930b7a5726721334329a612ee4
- SSDEEP
  
  1536:SnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:SGs8cd8eXlYairZYqMddH13L
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2