Overview

overview

10

Static

static

3

456432b067...a2.exe

windows7-x64

10

456432b067...a2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    456432b0673108cae9b91675bf3d045787688ff706842d368d8002bf0ba4e2a2.exe

  • Size

    96KB

  • Sample

    240705-mhv8yayhka

  • MD5

    c36d0870d1303f8e76a8157981fe7670

  • SHA1

    d3039cded314d1eba57fc2537901e5d617ea245d

  • SHA256

    456432b0673108cae9b91675bf3d045787688ff706842d368d8002bf0ba4e2a2

  • SHA512

    e4a10fe30c6533bd0c915223c6eae1f0b30e64685ae63a1c9077624838aed2cc38d6698e1da8ef1eec6525f4c83a789fbcbbf90d4794d72c8833fe3ff94d0406

  • SSDEEP

    1536:OnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:OGs8cd8eXlYairZYqMddH13L

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      456432b0673108cae9b91675bf3d045787688ff706842d368d8002bf0ba4e2a2.exe

    • Size

      96KB

    • MD5

      c36d0870d1303f8e76a8157981fe7670

    • SHA1

      d3039cded314d1eba57fc2537901e5d617ea245d

    • SHA256

      456432b0673108cae9b91675bf3d045787688ff706842d368d8002bf0ba4e2a2

    • SHA512

      e4a10fe30c6533bd0c915223c6eae1f0b30e64685ae63a1c9077624838aed2cc38d6698e1da8ef1eec6525f4c83a789fbcbbf90d4794d72c8833fe3ff94d0406

    • SSDEEP

      1536:OnAHcBbLmdvduLd8IDiaP/8A68YaiIv2RwEYqlwi+BzdAeV9b5ADbyxxL:OGs8cd8eXlYairZYqMddH13L

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks