Overview

overview

10

Static

static

10

31dd5cdeea...cs.exe

windows7-x64

10

31dd5cdeea...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31dd5cdeeaae970a090f3ede08eb77d0aa9ae46df9b664ecffc339b75e83dd4b_NeikiAnalytics.exe

  • Size

    35KB

  • Sample

    240626-bkw3gayamq

  • MD5

    01afdc35fdfb866cbdcb1afdb7e8f190

  • SHA1

    d12fb538dbfe3f0d5d184497d3121ad783df7417

  • SHA256

    31dd5cdeeaae970a090f3ede08eb77d0aa9ae46df9b664ecffc339b75e83dd4b

  • SHA512

    e1f4e1eca601459428393be19e07c70f95a8f5d9a8437358ae2e2201a94ca659804c63c1b9fc05cc71afed801a40acbc6e562882e5762cfc749a77199e9c3769

  • SSDEEP

    768:K6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:J8Z0kA7FHlO2OwOTUtKjpB

Score
10/10
neconydtrojanupx

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      31dd5cdeeaae970a090f3ede08eb77d0aa9ae46df9b664ecffc339b75e83dd4b_NeikiAnalytics.exe

    • Size

      35KB

    • MD5

      01afdc35fdfb866cbdcb1afdb7e8f190

    • SHA1

      d12fb538dbfe3f0d5d184497d3121ad783df7417

    • SHA256

      31dd5cdeeaae970a090f3ede08eb77d0aa9ae46df9b664ecffc339b75e83dd4b

    • SHA512

      e1f4e1eca601459428393be19e07c70f95a8f5d9a8437358ae2e2201a94ca659804c63c1b9fc05cc71afed801a40acbc6e562882e5762cfc749a77199e9c3769

    • SSDEEP

      768:K6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:J8Z0kA7FHlO2OwOTUtKjpB

    Score
    10/10
    neconydtrojanupx

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks