General

  • Target

    d570de91f8429cec196fcfdef80d2d2d95bb09b7fa7f4191503e9b3de31d8123

  • Size

    72KB

  • Sample

    240610-wg1xgavgjq

  • MD5

    06438cf637d9e9c0a4c83620ae8ab404

  • SHA1

    4997126de5950d73a510916fc0018dc42a4dcdf6

  • SHA256

    d570de91f8429cec196fcfdef80d2d2d95bb09b7fa7f4191503e9b3de31d8123

  • SHA512

    4a0ff1a89d9701b0feb565d82de415c5f8feb23e0d1c4b30e6d4aee2ae931f45198fdf8698dac77cf59a821c272eb7bbbd96fa3c3be2e61ac5ad6515545df3b2

  • SSDEEP

    768:WMEIvFGvoEr8LFK0ic46N47eSvYAHwmZGp6JXXlaa5uA:WbIvYvoEyFKF6N4ySAAQmZTl/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      d570de91f8429cec196fcfdef80d2d2d95bb09b7fa7f4191503e9b3de31d8123

    • Size

      72KB

    • MD5

      06438cf637d9e9c0a4c83620ae8ab404

    • SHA1

      4997126de5950d73a510916fc0018dc42a4dcdf6

    • SHA256

      d570de91f8429cec196fcfdef80d2d2d95bb09b7fa7f4191503e9b3de31d8123

    • SHA512

      4a0ff1a89d9701b0feb565d82de415c5f8feb23e0d1c4b30e6d4aee2ae931f45198fdf8698dac77cf59a821c272eb7bbbd96fa3c3be2e61ac5ad6515545df3b2

    • SSDEEP

      768:WMEIvFGvoEr8LFK0ic46N47eSvYAHwmZGp6JXXlaa5uA:WbIvYvoEyFKF6N4ySAAQmZTl/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks