General

  • Target

    b39d20b0656503012b314e26ffacf5305edff12903c375fcebb14ed80aab478f

  • Size

    92KB

  • Sample

    240521-dkdl8sff35

  • MD5

    2c311cff2dfe79edc8487cf9b9cbf9ed

  • SHA1

    1a63a45f99cf74b09f9995e3fab7db0132b53ffd

  • SHA256

    b39d20b0656503012b314e26ffacf5305edff12903c375fcebb14ed80aab478f

  • SHA512

    a47ae5e219a8cf3a1747eb280721cd2cb06e9464b25d2d95513147e1cf352073e047fdae68b209bf8dc046b8fa97ca3dae833bac40ce3b4926bc728b97f10aaf

  • SSDEEP

    1536:kd9dseIOcEE3bIvYvZEyF4EEOF6N4yS+AQmZTl/5:cdseIO/EZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      b39d20b0656503012b314e26ffacf5305edff12903c375fcebb14ed80aab478f

    • Size

      92KB

    • MD5

      2c311cff2dfe79edc8487cf9b9cbf9ed

    • SHA1

      1a63a45f99cf74b09f9995e3fab7db0132b53ffd

    • SHA256

      b39d20b0656503012b314e26ffacf5305edff12903c375fcebb14ed80aab478f

    • SHA512

      a47ae5e219a8cf3a1747eb280721cd2cb06e9464b25d2d95513147e1cf352073e047fdae68b209bf8dc046b8fa97ca3dae833bac40ce3b4926bc728b97f10aaf

    • SSDEEP

      1536:kd9dseIOcEE3bIvYvZEyF4EEOF6N4yS+AQmZTl/5:cdseIO/EZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks