Overview

overview

10

Static

static

10

0802a88fd2...0N.exe

windows7-x64

10

0802a88fd2...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0802a88fd2b9bdd98b1e5a0125931290N.exe

  • Size

    316KB

  • MD5

    0802a88fd2b9bdd98b1e5a0125931290

  • SHA1

    e94428e39cc8ef7f202ebc13925216d1f54aa7a7

  • SHA256

    6a1704c2ee0c12ee1744df0e82a38c84444dddb222b58ce19ead08e0fdee5192

  • SHA512

    cd6f955615a84e16856100ee4654ce5ea05caa3957c9991410302e4bfad7e60715f0f9eb8474631af6ea18c7244115f8d38377844ec0eba5c52b076fc1e14bf8

  • SSDEEP

    1536:14d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:1IdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0802a88fd2b9bdd98b1e5a0125931290N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections