Overview

overview

10

Static

static

10

4d33cad753...cs.exe

windows7-x64

10

4d33cad753...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4d33cad753649486aaa948d8195c0fae06f6961f78b76db54c8d0d8487039d52_NeikiAnalytics.exe

  • Size

    35KB

  • Sample

    240627-e623dsvfrl

  • MD5

    b7b785036ff68bdec698d6234fee0d50

  • SHA1

    77bc68832659ca06c79017d9588aecad35025361

  • SHA256

    4d33cad753649486aaa948d8195c0fae06f6961f78b76db54c8d0d8487039d52

  • SHA512

    a52c4d392a46b15614eb190ea56ce0a643198d7457a5fe0718c5d2348500ce8443a7ae362ee6be580b34309f29b6ff18037009210501598695c9fb33a7e60a8c

  • SSDEEP

    768:66vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:58Z0kA7FHlO2OwOTUtKjpB

Score
10/10
neconydtrojanupx

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      4d33cad753649486aaa948d8195c0fae06f6961f78b76db54c8d0d8487039d52_NeikiAnalytics.exe

    • Size

      35KB

    • MD5

      b7b785036ff68bdec698d6234fee0d50

    • SHA1

      77bc68832659ca06c79017d9588aecad35025361

    • SHA256

      4d33cad753649486aaa948d8195c0fae06f6961f78b76db54c8d0d8487039d52

    • SHA512

      a52c4d392a46b15614eb190ea56ce0a643198d7457a5fe0718c5d2348500ce8443a7ae362ee6be580b34309f29b6ff18037009210501598695c9fb33a7e60a8c

    • SSDEEP

      768:66vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:58Z0kA7FHlO2OwOTUtKjpB

    Score
    10/10
    neconydtrojanupx

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks