Overview

overview

10

Static

static

10

06a546b4b2...cs.exe

windows7-x64

10

06a546b4b2...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    06a546b4b27844cddea97bde95a8a2dd3d591b087cee3c505b353378ea88c208_NeikiAnalytics.exe

  • Size

    35KB

  • Sample

    240628-tw2ffawfpf

  • MD5

    3c3148f199c29e75fa9a0a64159ffbf0

  • SHA1

    fa1f6f88f9e43fddf8a838d7f5b5b564587dbe7f

  • SHA256

    06a546b4b27844cddea97bde95a8a2dd3d591b087cee3c505b353378ea88c208

  • SHA512

    75ea9482189acb9f146f9318c90b790d85aad5ab69d7d13d9f53f06c03871b3a6eb41e925987baa4406621bf40bef4adf143498d1ca70dc315133f25bb45257c

  • SSDEEP

    768:V6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:Y8Z0kA7FHlO2OwOTUtKjpB

Score
10/10
neconydtrojanupx

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      06a546b4b27844cddea97bde95a8a2dd3d591b087cee3c505b353378ea88c208_NeikiAnalytics.exe

    • Size

      35KB

    • MD5

      3c3148f199c29e75fa9a0a64159ffbf0

    • SHA1

      fa1f6f88f9e43fddf8a838d7f5b5b564587dbe7f

    • SHA256

      06a546b4b27844cddea97bde95a8a2dd3d591b087cee3c505b353378ea88c208

    • SHA512

      75ea9482189acb9f146f9318c90b790d85aad5ab69d7d13d9f53f06c03871b3a6eb41e925987baa4406621bf40bef4adf143498d1ca70dc315133f25bb45257c

    • SSDEEP

      768:V6vjVmakOElpmAsUA7DJHrhto2OsgwAPTUrpiEe7HpB:Y8Z0kA7FHlO2OwOTUtKjpB

    Score
    10/10
    neconydtrojanupx

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks