Overview

overview

10

Static

static

3

9d401f9020...cs.exe

windows7-x64

10

9d401f9020...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9d401f9020ae651daf3b4d7610e56b5bdaacca4b5007aa6a78b0785ffced3fb3_NeikiAnalytics.exe

  • Size

    134KB

  • Sample

    240628-r9be3axfrk

  • MD5

    746b0f4715c5177dfb119de45ebf46d0

  • SHA1

    bbcdee45c78e43ea16e29d30b5c6d68a1f086993

  • SHA256

    9d401f9020ae651daf3b4d7610e56b5bdaacca4b5007aa6a78b0785ffced3fb3

  • SHA512

    f1a94c9bf89392c23fabcb79b08a56a49ea070ad0760275d97d21dc3e0f41853aedcf34f274b1f0f510ac2d8b99bf07931a72df76eb986b69bdadcc8fe871c00

  • SSDEEP

    1536:aDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:8iRTeH0iqAW6J6f1tqF6dngNmaZCia

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      9d401f9020ae651daf3b4d7610e56b5bdaacca4b5007aa6a78b0785ffced3fb3_NeikiAnalytics.exe

    • Size

      134KB

    • MD5

      746b0f4715c5177dfb119de45ebf46d0

    • SHA1

      bbcdee45c78e43ea16e29d30b5c6d68a1f086993

    • SHA256

      9d401f9020ae651daf3b4d7610e56b5bdaacca4b5007aa6a78b0785ffced3fb3

    • SHA512

      f1a94c9bf89392c23fabcb79b08a56a49ea070ad0760275d97d21dc3e0f41853aedcf34f274b1f0f510ac2d8b99bf07931a72df76eb986b69bdadcc8fe871c00

    • SSDEEP

      1536:aDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:8iRTeH0iqAW6J6f1tqF6dngNmaZCia

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks