General

  • Target

    619c5f70e305ea4f00b249bc3f3b5726b4aca58cf0b9a0eaf84b1492ebbbcbd5

  • Size

    72KB

  • Sample

    240521-3wrexaeb44

  • MD5

    cacfc7acb7a9648a1f04481c72c3063f

  • SHA1

    a42c64da838dbd51665b485a5997f94754a06d8e

  • SHA256

    619c5f70e305ea4f00b249bc3f3b5726b4aca58cf0b9a0eaf84b1492ebbbcbd5

  • SHA512

    92534364ad07711224b8a7ba6d5b55cc31e1af1d9a8f1633a66cfec17dff28682869fbb8e1844ed5ad8cb22332189596bb01e4e24bcc455ff57c924442e067b2

  • SSDEEP

    1536:qd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211:qdseIOMEZEyFjEOFqTiQm5l/5211

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      619c5f70e305ea4f00b249bc3f3b5726b4aca58cf0b9a0eaf84b1492ebbbcbd5

    • Size

      72KB

    • MD5

      cacfc7acb7a9648a1f04481c72c3063f

    • SHA1

      a42c64da838dbd51665b485a5997f94754a06d8e

    • SHA256

      619c5f70e305ea4f00b249bc3f3b5726b4aca58cf0b9a0eaf84b1492ebbbcbd5

    • SHA512

      92534364ad07711224b8a7ba6d5b55cc31e1af1d9a8f1633a66cfec17dff28682869fbb8e1844ed5ad8cb22332189596bb01e4e24bcc455ff57c924442e067b2

    • SSDEEP

      1536:qd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211:qdseIOMEZEyFjEOFqTiQm5l/5211

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks