General

  • Target

    241d8b75eb10bda889faf103e2767060ce788c0abaddbd53a2c87f581b422c1f

  • Size

    84KB

  • Sample

    240521-yh42mage9t

  • MD5

    98fbc5a5bc6775a6d820add18190a0f5

  • SHA1

    b941e81f171a3343dbbbd1e36cf987f6a42e2888

  • SHA256

    241d8b75eb10bda889faf103e2767060ce788c0abaddbd53a2c87f581b422c1f

  • SHA512

    9fd6a870e764a5c2cbffcb683e948db7859bbfe5becf1a5e63dfc14c3deb735d215e57364869bca4374703eb586786a2a421f8ea11cc1404b07a77b710575a24

  • SSDEEP

    1536:kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:cdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      241d8b75eb10bda889faf103e2767060ce788c0abaddbd53a2c87f581b422c1f

    • Size

      84KB

    • MD5

      98fbc5a5bc6775a6d820add18190a0f5

    • SHA1

      b941e81f171a3343dbbbd1e36cf987f6a42e2888

    • SHA256

      241d8b75eb10bda889faf103e2767060ce788c0abaddbd53a2c87f581b422c1f

    • SHA512

      9fd6a870e764a5c2cbffcb683e948db7859bbfe5becf1a5e63dfc14c3deb735d215e57364869bca4374703eb586786a2a421f8ea11cc1404b07a77b710575a24

    • SSDEEP

      1536:kd9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:cdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks