neconyd | 0bbb224e01af214de1651988f38858c004cf5d7639906bed12ecacf3efa49a00 | Triage

Sharing

General

Target

0bbb224e01af214de1651988f38858c004cf5d7639906bed12ecacf3efa49a00_NeikiAnalytics.exe
Size

96KB
Sample

240626-zdkb4asdlh
MD5

50852e257aae6e5fa4bad6581f800170
SHA1

d325af1b656c5fd83470ca68d8a6e5da01a68c0a
SHA256

0bbb224e01af214de1651988f38858c004cf5d7639906bed12ecacf3efa49a00
SHA512

0da5993105bf760fb9b581ebabce42ca113808765d06a5380e29f8d37b707fcfded15d604bf25f760eb19606d2a466758cc0c2ce089f1918f076fd886736725e
SSDEEP

1536:YnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:YGs8cd8eXlYairZYqMddH13L

Score

10^/10

neconyd trojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

- Target
  
  0bbb224e01af214de1651988f38858c004cf5d7639906bed12ecacf3efa49a00_NeikiAnalytics.exe
- Size
  
  96KB
- MD5
  
  50852e257aae6e5fa4bad6581f800170
- SHA1
  
  d325af1b656c5fd83470ca68d8a6e5da01a68c0a
- SHA256
  
  0bbb224e01af214de1651988f38858c004cf5d7639906bed12ecacf3efa49a00
- SHA512
  
  0da5993105bf760fb9b581ebabce42ca113808765d06a5380e29f8d37b707fcfded15d604bf25f760eb19606d2a466758cc0c2ce089f1918f076fd886736725e
- SSDEEP
  
  1536:YnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:YGs8cd8eXlYairZYqMddH13L
Score

10^/10

neconyd trojan
- Neconyd
  Neconyd is a trojan written in C++.
  trojan neconyd
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2