General

  • Target

    3b9bafb5cc50b462e58329ef14449e4163c9b5d0580d1aa35fcf542348fe3853.exe

  • Size

    76KB

  • Sample

    240519-l9dmjadf24

  • MD5

    cc1d0c32bb592df7f30df5ebb5193310

  • SHA1

    5a69f3ecdefaf0e23eec5483696ebaa1aded4b13

  • SHA256

    3b9bafb5cc50b462e58329ef14449e4163c9b5d0580d1aa35fcf542348fe3853

  • SHA512

    afdf4b0798f178891c207ced3df0dd0b7a3be2ab01b078871b7062c83d1d3ed4180b0ee7049470c3952feb62f566a6dd44b7e3f029d31811f65383eee4b4cdf3

  • SSDEEP

    1536:Id9dseIOcE93NIvYvZEyFhEEOF6N4yS+AQmZTl/5s11:4dseIOKEZEyF6EOFqTiQm5l/5s11

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      3b9bafb5cc50b462e58329ef14449e4163c9b5d0580d1aa35fcf542348fe3853.exe

    • Size

      76KB

    • MD5

      cc1d0c32bb592df7f30df5ebb5193310

    • SHA1

      5a69f3ecdefaf0e23eec5483696ebaa1aded4b13

    • SHA256

      3b9bafb5cc50b462e58329ef14449e4163c9b5d0580d1aa35fcf542348fe3853

    • SHA512

      afdf4b0798f178891c207ced3df0dd0b7a3be2ab01b078871b7062c83d1d3ed4180b0ee7049470c3952feb62f566a6dd44b7e3f029d31811f65383eee4b4cdf3

    • SSDEEP

      1536:Id9dseIOcE93NIvYvZEyFhEEOF6N4yS+AQmZTl/5s11:4dseIOKEZEyF6EOFqTiQm5l/5s11

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks