Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

afbd69be04...0N.exe

windows7-x64

10

afbd69be04...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    afbd69be0464f2b923e84d86121838a0N.exe

  • Size

    134KB

  • Sample

    240716-nac8tszblp

  • MD5

    afbd69be0464f2b923e84d86121838a0

  • SHA1

    4e86c4a8b465058f04e63e1e1749bddbc31931f7

  • SHA256

    ebbe51ddad5dd8e18115a495db5ea4736405692b5436775a05d34838b8375f3a

  • SHA512

    98784665d6e3f0388073bcaf630cd8d282b1d9cd95374f30515276c9fb7438913ecafaaf00594ab325da1abb353315d45da393eb5dc7f60791559c98ee53f97a

  • SSDEEP

    1536:WDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:IiRTeH0iqAW6J6f1tqF6dngNmaZCia

Score
10/10
neconydtrojan

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Targets

    • Target

      afbd69be0464f2b923e84d86121838a0N.exe

    • Size

      134KB

    • MD5

      afbd69be0464f2b923e84d86121838a0

    • SHA1

      4e86c4a8b465058f04e63e1e1749bddbc31931f7

    • SHA256

      ebbe51ddad5dd8e18115a495db5ea4736405692b5436775a05d34838b8375f3a

    • SHA512

      98784665d6e3f0388073bcaf630cd8d282b1d9cd95374f30515276c9fb7438913ecafaaf00594ab325da1abb353315d45da393eb5dc7f60791559c98ee53f97a

    • SSDEEP

      1536:WDfDbhERTatPLTH0iqNZg3mqKv6y0RrwFd1tSEsF27da6ZW72Foj/MqMabadwCia:IiRTeH0iqAW6J6f1tqF6dngNmaZCia

    Score
    10/10
    neconydtrojan

    • Neconyd

      Neconyd is a trojan written in C++.

      trojanneconyd

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks