General

  • Target

    9b825e9ad885a56eecd13ba01faf4afd951520da2ff507635f8f2122ac818151

  • Size

    72KB

  • Sample

    240522-elmf7sbf7t

  • MD5

    780f4ed7fcde9e0408044426fa35bf85

  • SHA1

    db42832127aa702f6ca51676d78dad69b4555efc

  • SHA256

    9b825e9ad885a56eecd13ba01faf4afd951520da2ff507635f8f2122ac818151

  • SHA512

    3fb3ed8a03366690f85ad2fa71db7cab4f68bb58cb19b19c2c8b7dac2fed2c799565cc620eec0337169526a8930eacefcf4fe7475d568ad97e5450042f167cda

  • SSDEEP

    1536:Ad9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211:gdseIOMEZEyFjEOFqTiQm5l/5211

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      9b825e9ad885a56eecd13ba01faf4afd951520da2ff507635f8f2122ac818151

    • Size

      72KB

    • MD5

      780f4ed7fcde9e0408044426fa35bf85

    • SHA1

      db42832127aa702f6ca51676d78dad69b4555efc

    • SHA256

      9b825e9ad885a56eecd13ba01faf4afd951520da2ff507635f8f2122ac818151

    • SHA512

      3fb3ed8a03366690f85ad2fa71db7cab4f68bb58cb19b19c2c8b7dac2fed2c799565cc620eec0337169526a8930eacefcf4fe7475d568ad97e5450042f167cda

    • SSDEEP

      1536:Ad9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5211:gdseIOMEZEyFjEOFqTiQm5l/5211

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks