Overview

overview

10

Static

static

3

a20fc6da07...cs.exe

windows7-x64

10

a20fc6da07...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a20fc6da07fbe7dac362c896d8eb2352288d6b2b3e6ce04f488644f934c81cac_NeikiAnalytics.exe

  • Size

    96KB

  • Sample

    240628-vhc2csxbkg

  • MD5

    9b19969c5d2898468e2fa4d2c9f146a0

  • SHA1

    0c7143cf583b899743ddc56dd142e0dfa08d270a

  • SHA256

    a20fc6da07fbe7dac362c896d8eb2352288d6b2b3e6ce04f488644f934c81cac

  • SHA512

    b2bdc646106e46b60489c7835439b3ac2ace984d2f24e93dec64031308e644cab7d07f21da580f3eda735c90f5fc790acb480c705c039523df79d5d6834db885

  • SSDEEP

    1536:7nAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:7Gs8cd8eXlYairZYqMddH13L

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      a20fc6da07fbe7dac362c896d8eb2352288d6b2b3e6ce04f488644f934c81cac_NeikiAnalytics.exe

    • Size

      96KB

    • MD5

      9b19969c5d2898468e2fa4d2c9f146a0

    • SHA1

      0c7143cf583b899743ddc56dd142e0dfa08d270a

    • SHA256

      a20fc6da07fbe7dac362c896d8eb2352288d6b2b3e6ce04f488644f934c81cac

    • SHA512

      b2bdc646106e46b60489c7835439b3ac2ace984d2f24e93dec64031308e644cab7d07f21da580f3eda735c90f5fc790acb480c705c039523df79d5d6834db885

    • SSDEEP

      1536:7nAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:7Gs8cd8eXlYairZYqMddH13L

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks