General

  • Target

    b4f7562f3e3a145a85c1b97a08e06468dae73836a52a164ff336225b664f2ba1

  • Size

    65KB

  • Sample

    240522-gh559aea62

  • MD5

    0486239d3c8669b047b35065cd548f9c

  • SHA1

    2cc8e608569d3025d6fef8fabd067aaf9f97d01a

  • SHA256

    b4f7562f3e3a145a85c1b97a08e06468dae73836a52a164ff336225b664f2ba1

  • SHA512

    df203ae9057c067f586fc1e23a9d2732c6222d247034992e7e80528babeedcd8d60c9ec228683a53e9f419de52572426228d5295488c352ca7146000eaf0feb8

  • SSDEEP

    1536:0d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:MdseIO+EZEyFjEOFqTiQmOl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      b4f7562f3e3a145a85c1b97a08e06468dae73836a52a164ff336225b664f2ba1

    • Size

      65KB

    • MD5

      0486239d3c8669b047b35065cd548f9c

    • SHA1

      2cc8e608569d3025d6fef8fabd067aaf9f97d01a

    • SHA256

      b4f7562f3e3a145a85c1b97a08e06468dae73836a52a164ff336225b664f2ba1

    • SHA512

      df203ae9057c067f586fc1e23a9d2732c6222d247034992e7e80528babeedcd8d60c9ec228683a53e9f419de52572426228d5295488c352ca7146000eaf0feb8

    • SSDEEP

      1536:0d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZcl/5:MdseIO+EZEyFjEOFqTiQmOl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks