Overview

overview

10

Static

static

3

acf8f9afab...76.exe

windows7-x64

10

acf8f9afab...76.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    acf8f9afabd26c2b8d6b5f36f59ca720c28e89dfbbe0375857798ef737225776

  • Size

    134KB

  • Sample

    240702-cbvzgswbjn

  • MD5

    d162023aef2193d8f8799a082bdda765

  • SHA1

    a4694dffac9c424d463859fe75efe43bbc5afc1e

  • SHA256

    acf8f9afabd26c2b8d6b5f36f59ca720c28e89dfbbe0375857798ef737225776

  • SHA512

    5cb745de6eedc8dc4fe60942774c28068258290b99fecb2b61dad72c576426c10d3c3fea3ee634745db27e174fbe9253bf4822195f602cb77e44f55d4d28b055

  • SSDEEP

    1536:WDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:IiRTeH0iqAW6J6f1tqF6dngNmaZCia

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      acf8f9afabd26c2b8d6b5f36f59ca720c28e89dfbbe0375857798ef737225776

    • Size

      134KB

    • MD5

      d162023aef2193d8f8799a082bdda765

    • SHA1

      a4694dffac9c424d463859fe75efe43bbc5afc1e

    • SHA256

      acf8f9afabd26c2b8d6b5f36f59ca720c28e89dfbbe0375857798ef737225776

    • SHA512

      5cb745de6eedc8dc4fe60942774c28068258290b99fecb2b61dad72c576426c10d3c3fea3ee634745db27e174fbe9253bf4822195f602cb77e44f55d4d28b055

    • SSDEEP

      1536:WDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:IiRTeH0iqAW6J6f1tqF6dngNmaZCia

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks