Overview

overview

10

Static

static

10

11429210b3...40.exe

windows7-x64

10

11429210b3...40.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    11429210b383ec1b76b9b573d06d5740.bin

  • Size

    316KB

  • MD5

    11429210b383ec1b76b9b573d06d5740

  • SHA1

    372e3a7f56108e7c923e4f0a65fc469832735b79

  • SHA256

    c9cd82fa10ba358593df8e3d1f215e882590be371370a1dcc4a2ae4165d149fc

  • SHA512

    1467906357f73a0aee4528232ccedc6326e1532f2d09fc6d458aab96c445452f10d4e908e4b58c73c363ed8ba8c0ba7db7fb80404dc3225da72341a72d023881

  • SSDEEP

    1536:v4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZUnOHBRzU:vIdseIO+EZEyFjEOFqTiQmKnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 11429210b383ec1b76b9b573d06d5740.bin
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections