General

  • Target

    c6849610e3726e0357589ed6e6d73af776acfc973e9962c54481a1d27017f08c.exe

  • Size

    68KB

  • Sample

    240519-qfw91aaa89

  • MD5

    0e61f697903f2f1e4c62b7b7ead22ca0

  • SHA1

    31175b35b97480e286ba36c51d2b5be694e6bebf

  • SHA256

    c6849610e3726e0357589ed6e6d73af776acfc973e9962c54481a1d27017f08c

  • SHA512

    ec6455200c360ebb104a24971ac271b2747c4e3ee8399f080d509b2ebb138ecc296806dcefaf027f3f66b29a9c3996f975af93b802814a6a36662754581c701c

  • SSDEEP

    1536:Rd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:hdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      c6849610e3726e0357589ed6e6d73af776acfc973e9962c54481a1d27017f08c.exe

    • Size

      68KB

    • MD5

      0e61f697903f2f1e4c62b7b7ead22ca0

    • SHA1

      31175b35b97480e286ba36c51d2b5be694e6bebf

    • SHA256

      c6849610e3726e0357589ed6e6d73af776acfc973e9962c54481a1d27017f08c

    • SHA512

      ec6455200c360ebb104a24971ac271b2747c4e3ee8399f080d509b2ebb138ecc296806dcefaf027f3f66b29a9c3996f975af93b802814a6a36662754581c701c

    • SSDEEP

      1536:Rd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:hdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks