Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    458f57f74187638d4e9d10336bd8bd30N.exe

  • Size

    88KB

  • Sample

    240707-gbwm8svdrm

  • MD5

    458f57f74187638d4e9d10336bd8bd30

  • SHA1

    f52f03ba0f62aaba58f1a542eb61ab968217a3f7

  • SHA256

    dd60cb6e921170cbd1a6d487628f8e9ff229c82de2466bee6571eda95acb9048

  • SHA512

    de197f4629b1e85b07990a35dca3360cec3eef7301cfff0483db70561cdb71f3813232b7c717ffc3880f8408931c86cc24a807b82658234663a66f5d06cb4f82

  • SSDEEP

    1536:7d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:LdseIOMEZEyFjEOFqTiQm5l/5

Score
10/10

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      458f57f74187638d4e9d10336bd8bd30N.exe

    • Size

      88KB

    • MD5

      458f57f74187638d4e9d10336bd8bd30

    • SHA1

      f52f03ba0f62aaba58f1a542eb61ab968217a3f7

    • SHA256

      dd60cb6e921170cbd1a6d487628f8e9ff229c82de2466bee6571eda95acb9048

    • SHA512

      de197f4629b1e85b07990a35dca3360cec3eef7301cfff0483db70561cdb71f3813232b7c717ffc3880f8408931c86cc24a807b82658234663a66f5d06cb4f82

    • SSDEEP

      1536:7d9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:LdseIOMEZEyFjEOFqTiQm5l/5

    Score
    10/10
    • Neconyd

      Neconyd is a trojan written in C++.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks