General

  • Target

    eaae9fc535aefba66d6f8cd5dd2ae9049d351a76f9d0d6197a1da78e36cd5d0f

  • Size

    92KB

  • Sample

    240522-llxqhaag58

  • MD5

    ab6dfcff6f3d9f0cde9579eac7a3b791

  • SHA1

    aa5ded6e1fa6f48756a554862fe65eb757439974

  • SHA256

    eaae9fc535aefba66d6f8cd5dd2ae9049d351a76f9d0d6197a1da78e36cd5d0f

  • SHA512

    2d1688259a35471f320af90d44bbefc494c0fdab3bc6166c6425d358321f6ca6119c507aebaf8648957d1d1b4a4e045a665f740f9d3abeca5c4dfda1025b10e0

  • SSDEEP

    768:UMEIvFGvZEh8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:UbIvYvZEgFKF6N4yS+AQmZTl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      eaae9fc535aefba66d6f8cd5dd2ae9049d351a76f9d0d6197a1da78e36cd5d0f

    • Size

      92KB

    • MD5

      ab6dfcff6f3d9f0cde9579eac7a3b791

    • SHA1

      aa5ded6e1fa6f48756a554862fe65eb757439974

    • SHA256

      eaae9fc535aefba66d6f8cd5dd2ae9049d351a76f9d0d6197a1da78e36cd5d0f

    • SHA512

      2d1688259a35471f320af90d44bbefc494c0fdab3bc6166c6425d358321f6ca6119c507aebaf8648957d1d1b4a4e045a665f740f9d3abeca5c4dfda1025b10e0

    • SSDEEP

      768:UMEIvFGvZEh8LFK0ic46N47eSdYAHwmZGp6JXXlaa5uA:UbIvYvZEgFKF6N4yS+AQmZTl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks