Overview

overview

10

Static

static

10

8b16825eed...0N.exe

windows7-x64

8b16825eed...0N.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    8b16825eedf44685bade8edbe0d02f90N.exe

  • Size

    90KB

  • MD5

    8b16825eedf44685bade8edbe0d02f90

  • SHA1

    4b29c8b448aaacdd55ac0e6d684abbee4f39b749

  • SHA256

    9c10409da6c31b26cbe7f96046a632aa0b87b4173b22a523834ef1d3fc87c779

  • SHA512

    778c7101e4e9842875bd116dee34f131e9f64385ce846d7cc14282f7d72acedd3baa55cfb52de858e01c347b26f9687f6a03781d882f961b82ee38a57bd35cf8

  • SSDEEP

    1536:14d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZ:1IdseIO+EZEyFjEOFqTiQm

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8b16825eedf44685bade8edbe0d02f90N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections