Overview

overview

10

Static

static

10

9fd00d0da8...0N.exe

windows7-x64

10

9fd00d0da8...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9fd00d0da8c76b064b71b6949eeef780N.exe

  • Size

    248KB

  • MD5

    9fd00d0da8c76b064b71b6949eeef780

  • SHA1

    a839b0db56b97cbf80bb6056e819abdea42f0e7d

  • SHA256

    c62f0fd0e9cd9680edb6d923cfa3e1763a8d02047d082f8861ee3f43176b0c58

  • SHA512

    cbf6719caf5ef96363a88316565bc79da7c6b903d9a54a08ffef7fc32527b028479d67a612f8b7c81c37811f5183768f1404b1e5ab2539af1cf7ad6a311c6bb0

  • SSDEEP

    1536:H4d9dseIOc+93bIvYvZEyF4EEOF6N4yS+AQmZMnOHBRzU:HIdseIO+EZEyFjEOFqTiQmGnOHjzU

Score
10/10
upxneconyd

Malware Config

Extracted

Family

neconyd

C2

http://ow5dirasuek.com/

http://mkkuei4kdsz.com/

http://lousta.net/

Signatures

  • Neconyd family
    neconyd
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9fd00d0da8c76b064b71b6949eeef780N.exe
    .exe windows:4 windows x86 arch:x86

    b6ad8e85304192a027658f6e227d5e36


    Headers

    Imports

    Sections